Apple TV < 10.2.1 Multiple Vulnerabilities

2017-05-1800:00:00

Tenable

www.tenable.com

Versions of Apple TV earlier than 10.2.1 are affected by multiple vulnerabilities :

A flaw exists that is triggered as certain input is not properly validated. This may allow a context-dependent attacker to corrupt memory and potentially execute arbitrary code.
A use-after-free error exists in the handling of RenderLayer objects. With a specially crafted web page, a context-dependent attacker can dereference already freed memory and potentially execute arbitrary code.
A logic flaw exists that allows a universal cross-site scripting (UXSS) attack. The issue is triggered when handling WebKit Editor commands. This may allow a context-dependent attacker to create a specially crafted web page that will execute arbitrary script code in a user’s browser session within the trust relationship between their browser and any website.

This product is also affected by vulnerabilities found in the following components:

Binary data 700118.prm

VendorProductVersionCPE
appleapple_tvcpe:/a:apple:apple_tv

Vendor	Product	Version	CPE
apple	apple_tv		cpe:/a:apple:apple_tv

References

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2499

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2501

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2502

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2504

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2505

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2507

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2513

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2515

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2518

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2519

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2520

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2521

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2522

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2523

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2524

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2525

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2530

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2531

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2536

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2549

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6979

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6980

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6984

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6987

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6989

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6994

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6995

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6996

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6997

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6998

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6999

support.apple.com/en-us/HT207801