WebKit, as used in Apple iOS before 9.1, Safari before 9.0.1, and iTunes before 12.3.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2015-10-21-1, APPLE-SA-2015-10-21-3, and APPLE-SA-2015-10-21-5.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2015-10-23 14:59
Updated : 2016-12-23 18:59
NVD link : CVE-2015-5928
Mitre link : CVE-2015-5928
JSON object : View
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
Products Affected
apple
- itunes
- iphone_os
- safari