Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2011-2866
HistoryMar 08, 2012 - 10:55 p.m.

CVE-2011-2866

2012-03-0822:55:01
CWE-119
[email protected]
web.nvd.nist.gov
29
cve-2011-2866
webkit
apple itunes
exploit
man-in-the-middle
arbitrary code
denial of service

7.6 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

74.0%

JSON

WebKit, as used in Apple iTunes before 10.6, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsing, a different vulnerability than other CVEs listed in APPLE-SA-2012-03-07-1.

Affected configurations

NVD
Node
appleitunesRange10.5.3
OR
appleitunesMatch4.0.0
OR
appleitunesMatch4.0.1
OR
appleitunesMatch4.1.0
OR
appleitunesMatch4.2.0
OR
appleitunesMatch4.5.0
OR
appleitunesMatch4.6.0
OR
appleitunesMatch4.7.0
OR
appleitunesMatch4.7.1
OR
appleitunesMatch4.7.2
OR
appleitunesMatch4.8.0
OR
appleitunesMatch4.9.0
OR
appleitunesMatch5.0.0
OR
appleitunesMatch5.0.1
OR
appleitunesMatch6.0.0
OR
appleitunesMatch6.0.1
OR
appleitunesMatch6.0.2
OR
appleitunesMatch6.0.3
OR
appleitunesMatch6.0.4
OR
appleitunesMatch6.0.5
OR
appleitunesMatch7.0.0
OR
appleitunesMatch7.0.1
OR
appleitunesMatch7.0.2
OR
appleitunesMatch7.1.0
OR
appleitunesMatch7.1.1
OR
appleitunesMatch7.2.0
OR
appleitunesMatch7.3.0
OR
appleitunesMatch7.3.1
OR
appleitunesMatch7.3.2
OR
appleitunesMatch7.4.0
OR
appleitunesMatch7.4.1
OR
appleitunesMatch7.4.2
OR
appleitunesMatch7.4.3
OR
appleitunesMatch7.5.0
OR
appleitunesMatch7.6.0
OR
appleitunesMatch7.6.1
OR
appleitunesMatch7.6.2
OR
appleitunesMatch7.7.0
OR
appleitunesMatch7.7.1
OR
appleitunesMatch8.0.0
OR
appleitunesMatch8.0.1
OR
appleitunesMatch9.0.0
OR
appleitunesMatch9.0.1
OR
appleitunesMatch9.0.2
OR
appleitunesMatch9.0.3
OR
appleitunesMatch9.1
OR
appleitunesMatch9.1.1
OR
appleitunesMatch9.2
OR
appleitunesMatch9.2.1
OR
appleitunesMatch10.0
OR
appleitunesMatch10.0.1
OR
appleitunesMatch10.1
OR
appleitunesMatch10.1.1
OR
appleitunesMatch10.1.2
OR
appleitunesMatch10.2
OR
appleitunesMatch10.3
OR
appleitunesMatch10.3.1
OR
appleitunesMatch10.4
OR
appleitunesMatch10.4.1
OR
appleitunesMatch10.5
OR
appleitunesMatch10.5.1
OR
appleitunesMatch10.5.2
OR
applewebkit

Related

cvelist 1
prion 1
nvd 1
openvas 6
nessus 6
securityvulns 2
cvelist
cvelist
CVE-2011-2866
2012-03-08 22:00:00
prion
prion
Memory corruption
2012-03-08 22:55:00
nvd
nvd
CVE-2011-2866
2012-03-08 22:55:01
openvas
openvas
Apple iTunes Multiple Vulnerabilities (Mar 2012) - Windows
2012-03-20 00:00:00
Apple iTunes Multiple Vulnerabilities - Mar12 (Windows)
2012-03-20 00:00:00
Apple Safari Webkit Multiple Vulnerabilities (Mar 2012) - Mac OS X
2012-03-13 00:00:00
nessus
nessus
Apple iTunes < 10.6 Multiple Vulnerabilities (uncredentialed check)
2012-03-12 00:00:00
Apple iTunes < 10.6 Multiple Vulnerabilities (credentialed check)
2012-03-12 00:00:00
Safari < 5.1.4 Multiple Vulnerabilities
2012-03-13 00:00:00
securityvulns
securityvulns
APPLE-SA-2012-03-07-1 iTunes 10.6
2012-03-09 00:00:00
Apple WebKit &#40;iTunes, iPhone, Safari, Google Chrome&#41; multiple security vulnerabilities
2012-08-27 00:00:00

7.6 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

74.0%

JSON
Related for CVE-2011-2866
cvelist1prion1nvd1openvas6nessus6securityvulns2