CVE-2018-4367 – FaceTime - 'readSPSandGetDecoderParams' Stack Corruption
https://notcve.org/view.php?id=CVE-2018-4367
A memory corruption issue was addressed with improved input validation. This issue affected versions prior to iOS 12.1. Un problema de corrupción de memoria se abordó con una validación de entradas mejorada. Este problema afectaba a iOS en versiones anteriores a la 12.1. FaceTime suffers from a stack corruption vulnerability in readSPSandGetDecoderParams. • https://www.exploit-db.com/exploits/45787 https://support.apple.com/kb/HT209192 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2018-4382 – WebKit JIT - 'ByteCodeParser::handleIntrinsicCall' Type Confusion
https://notcve.org/view.php?id=CVE-2018-4382
Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8. Se abordaron múltiples problemas de corrupción de memoria con una gestión de memoria mejorada. El problema afectaba a iOS en versiones anteriores a la 12.1, tvOS en versiones anteriores a la 12.1, watchOS en versiones anteriores a la 5.1, Safari en versiones anteriores a la 12.0.1, iTunes en versiones anteriores a la 12.9.1 y iCloud para Windows en versiones anteriores a la 7.8. WebKit JIT has type confusion bugs in ByteCodeParser::handleIntrinsicCall. • https://www.exploit-db.com/exploits/45911 https://support.apple.com/kb/HT209192 https://support.apple.com/kb/HT209194 https://support.apple.com/kb/HT209195 https://support.apple.com/kb/HT209196 https://support.apple.com/kb/HT209197 https://support.apple.com/kb/HT209198 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2018-4386 – Sony Playstation 4 (PS4) < 6.72 - WebKit Code Execution (PoC)
https://notcve.org/view.php?id=CVE-2018-4386
Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8. Se abordaron múltiples problemas de corrupción de memoria con una gestión de memoria mejorada. El problema afectaba a iOS en versiones anteriores a la 12.1, tvOS en versiones anteriores a la 12.1, watchOS en versiones anteriores a la 5.1, Safari en versiones anteriores a la 12.0.1, iTunes en versiones anteriores a la 12.9.1 y iCloud para Windows en versiones anteriores a la 7.8. WebKit JSC has an issue where BytecodeGenerator::hoistSloppyModeFunctionIfNecessary does not invalidate the ForInContext object. • https://www.exploit-db.com/exploits/47893 https://www.exploit-db.com/exploits/45912 http://packetstormsecurity.com/files/155871/Sony-Playstation-4-Webkit-Code-Execution.html https://support.apple.com/kb/HT209192 https://support.apple.com/kb/HT209194 https://support.apple.com/kb/HT209195 https://support.apple.com/kb/HT209196 https://support.apple.com/kb/HT209197 https://support.apple.com/kb/HT209198 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2018-4416 – WebKit JSC JIT - 'JSPropertyNameEnumerator' Type Confusion
https://notcve.org/view.php?id=CVE-2018-4416
Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8. Se abordaron múltiples problemas de corrupción de memoria con una gestión de memoria mejorada. El problema afectaba a iOS en versiones anteriores a la 12.1; tvOS en versiones anteriores a la 12.1; watchOS en versiones anteriores a la 5.1; Safari en versiones anteriores a la 12.0.1; iTunes en versiones anteriores a la 12.9.1 y iCloud para Windows en versiones anteriores a la 7.8. When a for-in loop is executed, a JSPropertyNameEnumerator object is created at the beginning and used to store the information of the input object to the for-in loop. • https://www.exploit-db.com/exploits/45910 https://github.com/erupmi/CVE-2018-4416-exploit https://support.apple.com/kb/HT209192 https://support.apple.com/kb/HT209194 https://support.apple.com/kb/HT209195 https://support.apple.com/kb/HT209196 https://support.apple.com/kb/HT209197 https://support.apple.com/kb/HT209198 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2018-4376 – Apple Safari RenderCounter Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2018-4376
Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8. Se abordaron múltiples problemas de corrupción de memoria con una gestión de memoria mejorada. El problema afectaba a iOS en versiones anteriores a la 12.1, watchOS en versiones anteriores a la 5.1, Safari en versiones anteriores a la 12.0.1, iTunes en versiones anteriores a la 12.9.1 y iCloud para Windows en versiones anteriores a la 7.8. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Safari. • https://support.apple.com/kb/HT209192 https://support.apple.com/kb/HT209195 https://support.apple.com/kb/HT209196 https://support.apple.com/kb/HT209197 https://support.apple.com/kb/HT209198 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •