CVE-2017-7091 – Apple Safari RenderFlowThread Out-Of-Bounds Access Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2017-7091
An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is affected. iCloud before 7.0 on Windows is affected. iTunes before 12.7 on Windows is affected. tvOS before 11 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. Se ha descubierto un problema en ciertos productos Apple. • http://www.securityfocus.com/bid/100995 http://www.securitytracker.com/id/1039384 http://www.securitytracker.com/id/1039428 https://support.apple.com/HT208112 https://support.apple.com/HT208113 https://support.apple.com/HT208116 https://support.apple.com/HT208141 https://support.apple.com/HT208142 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2017-7115 – Apple iOS 10.2 (14C92) - Remote Code Execution
https://notcve.org/view.php?id=CVE-2017-7115
An issue was discovered in certain Apple products. iOS before 11 is affected. tvOS before 11 is affected. The issue involves the "Wi-Fi" component. It might allow remote attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via crafted Wi-Fi traffic that leverages a race condition. Se ha descubierto un problema en ciertos productos Apple. Se han visto afectadas las versiones de iOS anteriores a la 11 y las versiones de tvOS anteriores a la 11. • https://www.exploit-db.com/exploits/42996 http://www.securityfocus.com/bid/100924 http://www.securitytracker.com/id/1039385 https://bugs.chromium.org/p/project-zero/issues/detail?id=1317 https://support.apple.com/HT208112 https://support.apple.com/HT208113 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVE-2017-7112
https://notcve.org/view.php?id=CVE-2017-7112
An issue was discovered in certain Apple products. iOS before 11 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the "Wi-Fi" component. It might allow remote attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via crafted Wi-Fi traffic. Se ha descubierto un problema en ciertos productos Apple. Se han visto afectadas las versiones de iOS anteriores a la 11, las versiones de tvOS anteriores a la 11 y las versiones de watchOS anteriores a la 4. • http://www.securityfocus.com/bid/100927 http://www.securitytracker.com/id/1039385 https://bugs.chromium.org/p/project-zero/issues/detail?id=1314 https://support.apple.com/HT208112 https://support.apple.com/HT208113 https://support.apple.com/HT208115 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2017-7105
https://notcve.org/view.php?id=CVE-2017-7105
An issue was discovered in certain Apple products. iOS before 11 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the "Wi-Fi" component. It might allow remote attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via crafted Wi-Fi traffic. Se ha descubierto un problema en ciertos productos Apple. Se han visto afectadas las versiones de iOS anteriores a la 11, las versiones de tvOS anteriores a la 11 y las versiones de watchOS anteriores a la 4. • http://www.securityfocus.com/bid/100927 http://www.securitytracker.com/id/1039385 https://bugs.chromium.org/p/project-zero/issues/detail?id=1305 https://support.apple.com/HT208112 https://support.apple.com/HT208113 https://support.apple.com/HT208115 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2017-7108
https://notcve.org/view.php?id=CVE-2017-7108
An issue was discovered in certain Apple products. iOS before 11 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the "Wi-Fi" component. It might allow remote attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via crafted Wi-Fi traffic. Se ha descubierto un problema en ciertos productos Apple. Se han visto afectadas las versiones de iOS anteriores a la 11, las versiones de tvOS anteriores a la 11 y las versiones de watchOS anteriores a la 4. • http://www.securityfocus.com/bid/100927 http://www.securitytracker.com/id/1039385 https://bugs.chromium.org/p/project-zero/issues/detail?id=1312 https://support.apple.com/HT208112 https://support.apple.com/HT208113 https://support.apple.com/HT208115 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •