CVE-2017-13798 – WebKit - 'WebCore::RenderObject::previousSibling' Use-After-Free
https://notcve.org/view.php?id=CVE-2017-13798
An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. Se ha descubierto un problema en algunos productos Apple. • https://www.exploit-db.com/exploits/43175 http://www.securitytracker.com/id/1039703 https://security.gentoo.org/glsa/201712-01 https://support.apple.com/HT208219 https://support.apple.com/HT208222 https://support.apple.com/HT208223 https://support.apple.com/HT208224 https://support.apple.com/HT208225 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2017-13804
https://notcve.org/view.php?id=CVE-2017-13804
An issue was discovered in certain Apple products. iOS before 11.1 is affected. macOS before 10.13.1 is affected. tvOS before 11.1 is affected. watchOS before 4.1 is affected. The issue involves the "StreamingZip" component. It allows remote attackers to write to unintended pathnames via a crafted ZIP archive. Se ha descubierto un problema en algunos productos Apple. Se han visto afectadas las versiones de iOS anteriores a la 11.1, las versiones de macOS anteriores a la 10.13.1, las versiones de tvOS anteriores a la 11.1 y las versiones de watchOS anteriores a la 4.1. • http://www.securitytracker.com/id/1039703 https://support.apple.com/HT208219 https://support.apple.com/HT208220 https://support.apple.com/HT208221 https://support.apple.com/HT208222 • CWE-20: Improper Input Validation •
CVE-2017-13803
https://notcve.org/view.php?id=CVE-2017-13803
An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. Se ha descubierto un problema en algunos productos Apple. • http://www.securitytracker.com/id/1039703 https://security.gentoo.org/glsa/201712-01 https://support.apple.com/HT208219 https://support.apple.com/HT208222 https://support.apple.com/HT208223 https://support.apple.com/HT208224 https://support.apple.com/HT208225 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2017-13792 – WebKit - 'WebCore::InputType::element' Use-After-Free
https://notcve.org/view.php?id=CVE-2017-13792
An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. Se ha descubierto un problema en algunos productos Apple. • https://www.exploit-db.com/exploits/43167 http://www.securitytracker.com/id/1039703 https://security.gentoo.org/glsa/201712-01 https://support.apple.com/HT208219 https://support.apple.com/HT208222 https://support.apple.com/HT208223 https://support.apple.com/HT208224 https://support.apple.com/HT208225 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2017-13788
https://notcve.org/view.php?id=CVE-2017-13788
An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. Se ha descubierto un problema en algunos productos Apple. • http://www.securitytracker.com/id/1039703 https://security.gentoo.org/glsa/201712-01 https://support.apple.com/HT208219 https://support.apple.com/HT208222 https://support.apple.com/HT208223 https://support.apple.com/HT208224 https://support.apple.com/HT208225 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •