CVSS: 8.3EPSS: 0%CPEs: 82EXPL: 0CVE-2013-0995 – Apple Security Advisory 2013-09-18-2
https://notcve.org/view.php?id=CVE-2013-0995
19 May 2013 — WebKit, as used in Apple iTunes before 11.0.3, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsing, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2013-05-16-1. WebKit, usado en Apple iTunes anterior a 11.0.3, permite a atacantes man-in-the-middle la ejecución de código arbitrario o provocar una denegación de servicio (corrupción de memoria y caída de la aplicació... • http://lists.apple.com/archives/security-announce/2013/Jun/msg00001.html • CWE-399: Resource Management Errors •
CVSS: 8.3EPSS: 1%CPEs: 82EXPL: 0CVE-2013-0997 – Apple Safari Array Indexing Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2013-0997
19 May 2013 — WebKit, as used in Apple iTunes before 11.0.3, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsing, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2013-05-16-1. WebKit, usado en Apple iTunes anterior a 11.0.3, permite a atacantes man-in-the-middle la ejecución de código arbitrario o provocar una denegación de servicio (corrupción de memoria y caída de la aplicació... • http://lists.apple.com/archives/security-announce/2013/Jun/msg00001.html • CWE-399: Resource Management Errors •
CVSS: 8.3EPSS: 0%CPEs: 82EXPL: 0CVE-2013-0996 – Apple Security Advisory 2013-09-18-2
https://notcve.org/view.php?id=CVE-2013-0996
19 May 2013 — WebKit, as used in Apple iTunes before 11.0.3, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsing, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2013-05-16-1. WebKit, usado en Apple iTunes anterior a 11.0.3, permite a atacantes man-in-the-middle la ejecución de código arbitrario o provocar una denegación de servicio (corrupción de memoria y caída de la aplicació... • http://lists.apple.com/archives/security-announce/2013/Jun/msg00001.html • CWE-399: Resource Management Errors •
CVSS: 9.3EPSS: 6%CPEs: 130EXPL: 0CVE-2013-1003 – Apple Security Advisory 2013-09-18-2
https://notcve.org/view.php?id=CVE-2013-1003
19 May 2013 — WebKit, as used in Apple iTunes before 11.0.3, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsing, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2013-05-16-1. WebKit, usado en Apple iTunes anterior a 11.0.3, permite a atacantes man-in-the-middle la ejecución de código arbitrario o provocar una denegación de servicio (corrupción de memoria y caída de la aplicació... • http://lists.apple.com/archives/security-announce/2013/Jun/msg00001.html • CWE-399: Resource Management Errors •
CVSS: 8.3EPSS: 0%CPEs: 82EXPL: 0CVE-2013-0994 – Apple Security Advisory 2013-09-18-2
https://notcve.org/view.php?id=CVE-2013-0994
19 May 2013 — WebKit, as used in Apple iTunes before 11.0.3, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsing, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2013-05-16-1. WebKit, como es usado en Apple iTunes anterior a v11.0.3 permite a atacantes "man-in-the-middle" ejecutar código arbitrario o provocar una denegación de servicio (corrupción de memoria y caída de la aplica... • http://lists.apple.com/archives/security-announce/2013/Jun/msg00001.html • CWE-399: Resource Management Errors •
CVSS: 9.3EPSS: 0%CPEs: 130EXPL: 0CVE-2013-1000 – Apple Security Advisory 2013-09-18-2
https://notcve.org/view.php?id=CVE-2013-1000
19 May 2013 — WebKit, as used in Apple iTunes before 11.0.3, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsing, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2013-05-16-1. WebKit, usado en Apple iTunes anterior a 11.0.3, permite a atacantes man-in-the-middle la ejecución de código arbitrario o provocar una denegación de servicio (corrupción de memoria y caída de la aplicació... • http://lists.apple.com/archives/security-announce/2013/Jun/msg00001.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 6%CPEs: 130EXPL: 0CVE-2013-1007 – Apple Security Advisory 2013-09-18-2
https://notcve.org/view.php?id=CVE-2013-1007
19 May 2013 — WebKit, as used in Apple iTunes before 11.0.3, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsing, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2013-05-16-1. WebKit, usado en Apple iTunes anterior a 11.0.3, permite a atacantes man-in-the-middle la ejecución de código arbitrario o provocar una denegación de servicio (corrupción de memoria y caída de la aplicació... • http://lists.apple.com/archives/security-announce/2013/Jun/msg00001.html • CWE-399: Resource Management Errors •
CVSS: 9.3EPSS: 0%CPEs: 130EXPL: 0CVE-2013-1004 – Apple Security Advisory 2013-09-18-2
https://notcve.org/view.php?id=CVE-2013-1004
19 May 2013 — WebKit, as used in Apple iTunes before 11.0.3, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsing, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2013-05-16-1. WebKit, usado en Apple iTunes anterior a 11.0.3, permite a atacantes man-in-the-middle la ejecución de código arbitrario o provocar una denegación de servicio (corrupción de memoria y caída de la aplicació... • http://lists.apple.com/archives/security-announce/2013/Jun/msg00001.html • CWE-399: Resource Management Errors •
CVSS: 5.9EPSS: 0%CPEs: 89EXPL: 0CVE-2013-1014
https://notcve.org/view.php?id=CVE-2013-1014
19 May 2013 — Apple iTunes before 11.0.3 does not properly verify X.509 certificates, which allows man-in-the-middle attackers to spoof HTTPS servers via an arbitrary valid certificate. Apple iTunes anterior a 11.0.3 no verifica adecuadamente los certificados X.509, lo que permite a atacantes man-in-the-middle suplantar los servidores HTTPS a través de un certificado arbitrario válido. • http://lists.apple.com/archives/security-announce/2013/May/msg00000.html • CWE-20: Improper Input Validation •
CVSS: 8.3EPSS: 3%CPEs: 82EXPL: 0CVE-2013-0992 – Apple Security Advisory 2013-09-18-2
https://notcve.org/view.php?id=CVE-2013-0992
19 May 2013 — WebKit, as used in Apple iTunes before 11.0.3, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsing, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2013-05-16-1. WebKit, usado en Apple iTunes anterior a 11.0.3, permite a atacantes man-in-the-middle la ejecución de código arbitrario o provocar una denegación de servicio (corrupción de memoria y caída de la aplicació... • http://lists.apple.com/archives/security-announce/2013/Jun/msg00001.html • CWE-399: Resource Management Errors •