WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
References
Link | Resource |
---|---|
http://lists.apple.com/archives/security-announce/2012/Mar/msg00001.html | Mailing List Vendor Advisory |
http://lists.apple.com/archives/security-announce/2012/Mar/msg00000.html | Mailing List Vendor Advisory |
http://lists.apple.com/archives/security-announce/2012/Mar/msg00003.html | Mailing List Vendor Advisory |
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17364 | Third Party Advisory |
http://www.securitytracker.com/id?1026774 | Third Party Advisory VDB Entry |
http://secunia.com/advisories/48288 | Third Party Advisory |
http://secunia.com/advisories/48274 | Third Party Advisory |
http://secunia.com/advisories/48377 | Third Party Advisory |
http://www.securityfocus.com/bid/52365 | Third Party Advisory VDB Entry |
Information
Published : 2012-03-08 14:55
Updated : 2018-11-29 11:05
NVD link : CVE-2012-0625
Mitre link : CVE-2012-0625
JSON object : View
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
Products Affected
apple
- itunes
- iphone_os