Lucene search

[email protected]CVE-2013-0991

HistoryMay 20, 2013 - 2:44 p.m.

CVE-2013-0991

2013-05-2014:44:34

CWE-399

[email protected]

web.nvd.nist.gov

cve-2013-0991

webkit

apple itunes

security vulnerability

memory corruption

denial of service

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

73.6%

JSON

WebKit, as used in Apple iTunes before 11.0.3, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsing, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2013-05-16-1.

Affected configurations

NVD

Node

appleitunesRange≤11.0.2

appleitunesMatch4.0.0

appleitunesMatch4.0.1

appleitunesMatch4.1.0

appleitunesMatch4.2.0

appleitunesMatch4.5

appleitunesMatch4.5.0

appleitunesMatch4.6

appleitunesMatch4.6.0

appleitunesMatch4.7

appleitunesMatch4.7.0

appleitunesMatch4.7.1

appleitunesMatch4.7.2

appleitunesMatch4.8.0

appleitunesMatch4.9.0

appleitunesMatch5.0

appleitunesMatch5.0.0

appleitunesMatch5.0.1

appleitunesMatch6.0.0

appleitunesMatch6.0.1

appleitunesMatch6.0.2

appleitunesMatch6.0.3

appleitunesMatch6.0.4

appleitunesMatch6.0.5

appleitunesMatch7.0.0

appleitunesMatch7.0.1

appleitunesMatch7.0.2

appleitunesMatch7.1.0

appleitunesMatch7.1.1

appleitunesMatch7.2.0

appleitunesMatch7.3.0

appleitunesMatch7.3.1

appleitunesMatch7.3.2

appleitunesMatch7.4

appleitunesMatch7.4.0

appleitunesMatch7.4.1

appleitunesMatch7.4.2

appleitunesMatch7.4.3

appleitunesMatch7.5

appleitunesMatch7.5.0

appleitunesMatch7.6

appleitunesMatch7.6.0

appleitunesMatch7.6.1

appleitunesMatch7.6.2

appleitunesMatch7.7

appleitunesMatch7.7.0

appleitunesMatch7.7.1

appleitunesMatch8.0.0

appleitunesMatch8.0.1

appleitunesMatch9.0.0

appleitunesMatch9.0.1

appleitunesMatch9.0.2

appleitunesMatch9.0.3

appleitunesMatch9.1

appleitunesMatch9.1.1

appleitunesMatch9.2

appleitunesMatch9.2.1

appleitunesMatch10.0

appleitunesMatch10.0.1

appleitunesMatch10.1

appleitunesMatch10.1.1

appleitunesMatch10.1.1.4

appleitunesMatch10.1.2

appleitunesMatch10.2

appleitunesMatch10.2.2.12

appleitunesMatch10.3

appleitunesMatch10.3.1

appleitunesMatch10.4

appleitunesMatch10.4.0.80

appleitunesMatch10.4.1

appleitunesMatch10.4.1.10

appleitunesMatch10.5

appleitunesMatch10.5.1

appleitunesMatch10.5.1.42

appleitunesMatch10.5.2

appleitunesMatch10.5.3

appleitunesMatch10.6

appleitunesMatch10.6.1

appleitunesMatch10.6.3

AND

microsoftwindows_7

microsoftwindows_vista

microsoftwindows_xpMatch-

CPENameOperatorVersion
apple:itunesapple itunesle11.0.2
apple:itunesapple ituneseq4.0.0
apple:itunesapple ituneseq4.0.1
apple:itunesapple ituneseq4.1.0
apple:itunesapple ituneseq4.2.0
apple:itunesapple ituneseq4.5
apple:itunesapple ituneseq4.5.0
apple:itunesapple ituneseq4.6
apple:itunesapple ituneseq4.6.0
apple:itunesapple ituneseq4.7

CPE	Name	Operator	Version
apple:itunes	apple itunes	le	11.0.2
apple:itunes	apple itunes	eq	4.0.0
apple:itunes	apple itunes	eq	4.0.1
apple:itunes	apple itunes	eq	4.1.0
apple:itunes	apple itunes	eq	4.2.0
apple:itunes	apple itunes	eq	4.5
apple:itunes	apple itunes	eq	4.5.0
apple:itunes	apple itunes	eq	4.6
apple:itunes	apple itunes	eq	4.6.0
apple:itunes	apple itunes	eq	4.7