CVSS: 8.8EPSS: 1%CPEs: 2EXPL: 0CVE-2017-2526 – Apple Safari RenderInline Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2017-2526
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari before 10.1.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. Se descubrió un problema en ciertos productos de Apple. iOS anterior a versión 10.3.2 está afectado. • http://www.securityfocus.com/bid/98474 http://www.securitytracker.com/id/1038487 https://security.gentoo.org/glsa/201706-15 https://support.apple.com/HT207798 https://support.apple.com/HT207804 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 1%CPEs: 2EXPL: 0CVE-2017-2506 – Apple Safari RenderElement Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2017-2506
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari before 10.1.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. Se detectó un problema en ciertos productos de Apple. iOS anterior a versión 10.3.2 está afectado. • http://www.securityfocus.com/bid/98474 http://www.securitytracker.com/id/1038487 https://security.gentoo.org/glsa/201706-15 https://support.apple.com/HT207798 https://support.apple.com/HT207804 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2011-3438
https://notcve.org/view.php?id=CVE-2011-3438
WebKit, as used in Safari 5.0.6, allows remote attackers to cause a denial of service (process crash) or arbitrary code execution. WebKit, como se utiliza en Safari 5.0.6, permite a atacantes remotos provocar una denegación de servicio (caída de proceso) o ejecución arbitraria de código. • http://support.apple.com/kb/HT4808 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-5949
https://notcve.org/view.php?id=CVE-2017-5949
JavaScriptCore in WebKit, as distributed in Safari Technology Preview Release 22, allows remote attackers to cause a denial of service (heap-based out-of-bounds write and application crash) or possibly have unspecified other impact via crafted JavaScript code that triggers access to red-zone memory locations, related to jit/ThunkGenerators.cpp, llint/LowLevelInterpreter32_64.asm, and llint/LowLevelInterpreter64.asm. JavaScriptCore en WebKit, as distribuido en Safari Technology Preview Release 22, permite a atacantes remotos provocar una denegación de servicio (escritura basada en memoria dinámica - escritura basada en lectura fuera de los límites y caída de la aplicación) o posiblemente tener otros impactos inespecíficos a través de un código JavaScript manipulado que desencadena acceso a las localizaciones red-zone de la memoria, relacionado con jit/ThunkGenerators.cpp, llint/LowLevelInterpreter32_64.asm, y llint/LowLevelInterpreter64.asm. • http://www.securityfocus.com/bid/97298 https://bugs.webkit.org/show_bug.cgi?id=167239 https://trac.webkit.org/changeset/211479 • CWE-787: Out-of-bounds Write •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2016-10226
https://notcve.org/view.php?id=CVE-2016-10226
JavaScriptCore in WebKit, as distributed in Safari Technology Preview Release 18, allows remote attackers to cause a denial of service (bitfield out-of-bounds read and application crash) via crafted JavaScript code that is mishandled in the operatorString function, related to assembler/MacroAssemblerARM64.h, assembler/MacroAssemblerX86Common.h, and wasm/WasmB3IRGenerator.cpp. JavaScriptCore en WebKit, as distribuido en Safari Technology Preview Release 18, permite a atacantes remotos provocar una denegación de servicio (lectura de campo de bits fuera de límites y caída de la aplicación) a través de código JavaScript manipulado que no es manejado correctamente en la función operatorString, relacionado con assembler/MacroAssemblerARM64.h, assembler/MacroAssemblerX86Common.h, y wasm/WasmB3IRGenerator.cpp. • https://bugs.webkit.org/show_bug.cgi?id=165091 https://trac.webkit.org/changeset/209295 • CWE-125: Out-of-bounds Read •