Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2012-0648
HistoryMar 08, 2012 - 10:55 p.m.

CVE-2012-0648

2012-03-0822:55:04
CWE-119
[email protected]
web.nvd.nist.gov
24
cve-2012-0648
webkit
apple itunes
man-in-the-middle attack
arbitrary code
denial of service
memory corruption
application crash
nvd

7.6 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

77.6%

JSON

WebKit, as used in Apple iTunes before 10.6, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsing, a different vulnerability than other CVEs listed in APPLE-SA-2012-03-07-1.

Affected configurations

NVD
Node
appleitunesRange10.5.3
OR
appleitunesMatch4.0.0
OR
appleitunesMatch4.0.1
OR
appleitunesMatch4.1.0
OR
appleitunesMatch4.2.0
OR
appleitunesMatch4.5.0
OR
appleitunesMatch4.6.0
OR
appleitunesMatch4.7.0
OR
appleitunesMatch4.7.1
OR
appleitunesMatch4.7.2
OR
appleitunesMatch4.8.0
OR
appleitunesMatch4.9.0
OR
appleitunesMatch5.0.0
OR
appleitunesMatch5.0.1
OR
appleitunesMatch6.0.0
OR
appleitunesMatch6.0.1
OR
appleitunesMatch6.0.2
OR
appleitunesMatch6.0.3
OR
appleitunesMatch6.0.4
OR
appleitunesMatch6.0.5
OR
appleitunesMatch7.0.0
OR
appleitunesMatch7.0.1
OR
appleitunesMatch7.0.2
OR
appleitunesMatch7.1.0
OR
appleitunesMatch7.1.1
OR
appleitunesMatch7.2.0
OR
appleitunesMatch7.3.0
OR
appleitunesMatch7.3.1
OR
appleitunesMatch7.3.2
OR
appleitunesMatch7.4.0
OR
appleitunesMatch7.4.1
OR
appleitunesMatch7.4.2
OR
appleitunesMatch7.4.3
OR
appleitunesMatch7.5.0
OR
appleitunesMatch7.6.0
OR
appleitunesMatch7.6.1
OR
appleitunesMatch7.6.2
OR
appleitunesMatch7.7.0
OR
appleitunesMatch7.7.1
OR
appleitunesMatch8.0.0
OR
appleitunesMatch8.0.1
OR
appleitunesMatch9.0.0
OR
appleitunesMatch9.0.1
OR
appleitunesMatch9.0.2
OR
appleitunesMatch9.0.3
OR
appleitunesMatch9.1
OR
appleitunesMatch9.1.1
OR
appleitunesMatch9.2
OR
appleitunesMatch9.2.1
OR
appleitunesMatch10.0
OR
appleitunesMatch10.0.1
OR
appleitunesMatch10.1
OR
appleitunesMatch10.1.1
OR
appleitunesMatch10.1.2
OR
appleitunesMatch10.2
OR
appleitunesMatch10.3
OR
appleitunesMatch10.3.1
OR
appleitunesMatch10.4
OR
appleitunesMatch10.4.1
OR
appleitunesMatch10.5
OR
appleitunesMatch10.5.1
OR
appleitunesMatch10.5.2
OR
applewebkit

Related

nvd 1
prion 1
cvelist 1
openvas 6
securityvulns 2
nessus 6
nvd
nvd
CVE-2012-0648
2012-03-08 22:55:04
prion
prion
Memory corruption
2012-03-08 22:55:00
cvelist
cvelist
CVE-2012-0648
2012-03-08 22:00:00
openvas
openvas
Apple iTunes Multiple Vulnerabilities (Mar 2012) - Windows
2012-03-20 00:00:00
Apple Safari Webkit Multiple Vulnerabilities - March12 (Mac OS X)
2012-03-13 00:00:00
Apple Safari Webkit Multiple Vulnerabilities (Mar 2012) - Mac OS X
2012-03-13 00:00:00
securityvulns
securityvulns
APPLE-SA-2012-03-07-1 iTunes 10.6
2012-03-09 00:00:00
Apple WebKit (iTunes, iPhone, Safari, Google Chrome) multiple security vulnerabilities
2012-08-27 00:00:00
nessus
nessus
Apple iTunes < 10.6 Multiple Vulnerabilities (credentialed check)
2012-03-12 00:00:00
Apple iTunes < 10.6 Multiple Vulnerabilities (uncredentialed check)
2012-03-12 00:00:00
Safari < 5.1.4 Multiple Vulnerabilities
2012-03-13 00:00:00

7.6 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

77.6%

JSON
Related for CVE-2012-0648
nvd1prion1cvelist1openvas6securityvulns2nessus6