Apple : Security Vulnerabilities, CVEs, Published In 2011 (Denial of service)
Use-after-free vulnerability in Google Chrome before 16.0.912.63 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to Range handling.
Max CVSS
7.5
EPSS Score
3.00%
Published
2011-12-13
Updated
2020-05-08
The Cascading Style Sheets (CSS) implementation in Google Chrome before 16.0.912.63 on 64-bit platforms does not properly manage property arrays, which allows remote attackers to cause a denial of service (memory corruption) via unspecified vectors.
Max CVSS
5.0
EPSS Score
2.58%
Published
2011-12-13
Updated
2020-05-07
Google Chrome before 16.0.912.63 does not properly parse SVG documents, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
Max CVSS
5.0
EPSS Score
1.80%
Published
2011-12-13
Updated
2020-05-08
Use-after-free vulnerability in Google Chrome before 15.0.874.120 allows user-assisted remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to editing.
Max CVSS
6.8
EPSS Score
6.91%
Published
2011-11-11
Updated
2020-05-08
Use-after-free vulnerability in Google Chrome before 15.0.874.102 allows user-assisted remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to editing operations in conjunction with an unknown plug-in.
Max CVSS
6.8
EPSS Score
5.71%
Published
2011-10-25
Updated
2020-05-11
Use-after-free vulnerability in Google Chrome before 15.0.874.102 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to stale Cascading Style Sheets (CSS) token-sequence data.
Max CVSS
7.5
EPSS Score
8.86%
Published
2011-10-25
Updated
2020-05-11
FreeType in CoreGraphics in Apple iOS before 5.0.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font in a document.
Max CVSS
9.3
EPSS Score
1.05%
Published
2011-11-11
Updated
2021-06-22
The UIKit Alerts component in Apple iOS before 5 allows remote attackers to cause a denial of service (device hang) via a long tel: URL that triggers a large size for the acceptance dialog.
Max CVSS
5.0
EPSS Score
0.76%
Published
2011-10-14
Updated
2017-08-29
Double free vulnerability in OfficeImport in Apple iOS before 5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted Excel spreadsheet.
Max CVSS
6.8
EPSS Score
0.96%
Published
2011-10-14
Updated
2017-08-29
Buffer overflow in OfficeImport in Apple iOS before 5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted Microsoft Word document.
Max CVSS
6.8
EPSS Score
0.97%
Published
2011-10-14
Updated
2017-08-29
The kernel in Apple iOS before 5 and Apple TV before 4.4 does not properly recover memory allocated for incomplete TCP connections, which allows remote attackers to cause a denial of service (resource consumption) by making many connection attempts.
Max CVSS
5.0
EPSS Score
3.17%
Published
2011-10-14
Updated
2017-08-29
FreeType 2 before 2.4.7, as used in CoreGraphics in Apple iOS before 5, Mandriva Enterprise Server 5, and possibly other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font, a different vulnerability than CVE-2011-0226.
Max CVSS
4.3
EPSS Score
2.01%
Published
2011-10-14
Updated
2017-08-29
Buffer overflow in CoreAudio, as used in Apple iTunes before 10.5, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted Advanced Audio Coding (AAC) stream.
Max CVSS
9.3
EPSS Score
8.73%
Published
2011-10-12
Updated
2017-09-19
Apple QuickTime before 7.7.1 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via crafted TKHD atoms in a QuickTime movie file.
Max CVSS
9.3
EPSS Score
10.06%
Published
2011-10-28
Updated
2017-09-19
Integer overflow in Apple QuickTime before 7.7.1 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file with JPEG2000 encoding.
Max CVSS
9.3
EPSS Score
79.44%
Published
2011-10-28
Updated
2017-09-19
Buffer overflow in Apple QuickTime before 7.7.1 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file with FLC encoding.
Max CVSS
9.3
EPSS Score
6.11%
Published
2011-10-28
Updated
2017-09-19
Integer signedness error in Apple QuickTime before 7.7.1 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted font table in a QuickTime movie file.
Max CVSS
9.3
EPSS Score
5.99%
Published
2011-10-28
Updated
2017-09-19
Integer overflow in Apple QuickTime before 7.7.1 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PICT file.
Max CVSS
9.3
EPSS Score
2.40%
Published
2011-10-28
Updated
2017-09-19
WebKit, as used in Apple iTunes before 10.5, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsing, a different vulnerability than other CVEs listed in APPLE-SA-2011-10-11-1.
Max CVSS
7.6
EPSS Score
0.42%
Published
2011-10-12
Updated
2017-09-19
WebKit, as used in Apple iTunes before 10.5, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsing, a different vulnerability than other CVEs listed in APPLE-SA-2011-10-11-1.
Max CVSS
7.6
EPSS Score
0.42%
Published
2011-10-12
Updated
2017-09-19
WebKit, as used in Apple iTunes before 10.5, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsing, a different vulnerability than other CVEs listed in APPLE-SA-2011-10-11-1.
Max CVSS
7.6
EPSS Score
0.42%
Published
2011-10-12
Updated
2017-09-19
WebKit, as used in Apple iTunes before 10.5, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsing, a different vulnerability than other CVEs listed in APPLE-SA-2011-10-11-1.
Max CVSS
7.6
EPSS Score
0.42%
Published
2011-10-12
Updated
2017-09-19
WebKit, as used in Apple iTunes before 10.5, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsing, a different vulnerability than other CVEs listed in APPLE-SA-2011-10-11-1.
Max CVSS
7.6
EPSS Score
0.88%
Published
2011-10-12
Updated
2017-09-19
WebKit, as used in Apple iTunes before 10.5, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsing, a different vulnerability than other CVEs listed in APPLE-SA-2011-10-11-1.
Max CVSS
7.6
EPSS Score
0.88%
Published
2011-10-12
Updated
2017-09-19
WebKit, as used in Apple iTunes before 10.5, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsing, a different vulnerability than other CVEs listed in APPLE-SA-2011-10-11-1.
Max CVSS
7.6
EPSS Score
0.88%
Published
2011-10-12
Updated
2017-09-19