Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.ICLOUD_10_6.NASL
HistoryAug 20, 2019 - 12:00 a.m.

Apple iCloud 7.x < 7.13 / 10.x < 10.6 Multiple Vulnerabilities

2019-08-2000:00:00
This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
27
JSON

According to its version, the iCloud application installed on the remote Windows host is 7.x prior to 7.13 or 10.x prior to 10.6. It is, therefore, affected by multiple vulnerabilities:

  • Multiple arbitrary code execution vulnerabilities exist with in the WebKit due to improper handling of maliciously crafted content. An unauthenticated, remote attacker can exploit this to execute arbitrary code. (CVE-2019-8644, CVE-2019-8666, CVE-2019-8669, CVE-2019-8671, CVE-2019-8672, CVE-2019-8673, CVE-2019-8676, CVE-2019-8677, CVE-2019-8678, CVE-2019-8679, CVE-2019-8680, CVE-2019-8681, CVE-2019-8683, CVE-2019-8684, CVE-2019-8685, CVE-2019-8686, CVE-2019-8687, CVE-2019-8688, CVE-2019-8689)

  • A cross-site scripting (XSS) vulnerability exists with in the WebKit due to improper handling synchronous page loads.
    An unauthenticated, remote attacker can exploit this, by convincing a user to click a specially crafted URL, to execute arbitrary script code in a user’s browser session. (CVE-2019-8649)

  • A cross-site scripting (XSS) vulnerability exists with in the WebKit due to improper validation of user-supplied input before returning it to users. An unauthenticated, remote attacker can exploit this, by convincing a user to click a specially crafted URL, to execute arbitrary script code in a user’s browser session. (CVE-2019-8658)

  • A cross-site scripting (XSS) vulnerability exists with in the WebKit due to improper handling of document loads. An unauthenticated, remote attacker can exploit this, by convincing a user to click a specially crafted URL, to execute arbitrary script code in a user’s browser session. (CVE-2019-8690)

  • An information disclosure vulnerability exists in the included libxslt library due to improper input validation. An unauthenticated, remote attacker can exploit this, to disclose potentially sensitive information. (CVE-2019-13118)

#
# (C) Tenable Network Security, Inc.
#

include('compat.inc');

if (description)
{
  script_id(127914);
  script_version("1.5");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/29");

  script_cve_id(
    "CVE-2019-8644",
    "CVE-2019-8649",
    "CVE-2019-8658",
    "CVE-2019-8666",
    "CVE-2019-8669",
    "CVE-2019-8671",
    "CVE-2019-8672",
    "CVE-2019-8673",
    "CVE-2019-8676",
    "CVE-2019-8677",
    "CVE-2019-8678",
    "CVE-2019-8679",
    "CVE-2019-8680",
    "CVE-2019-8681",
    "CVE-2019-8683",
    "CVE-2019-8684",
    "CVE-2019-8685",
    "CVE-2019-8686",
    "CVE-2019-8687",
    "CVE-2019-8688",
    "CVE-2019-8689",
    "CVE-2019-8690",
    "CVE-2019-13118"
  );
  script_bugtraq_id(109323, 109328, 109329);

  script_name(english:"Apple iCloud 7.x < 7.13 / 10.x < 10.6 Multiple Vulnerabilities");
  script_summary(english:"Checks the version of iCloud.");

  script_set_attribute(attribute:"synopsis", value:
"An iCloud software installed on the remote Windows host is affected by multiple vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"According to its version, the iCloud application installed on the remote Windows host is 7.x prior to 7.13 or 10.x
prior to 10.6. It is, therefore, affected by multiple vulnerabilities:

  - Multiple arbitrary code execution vulnerabilities exist with in the WebKit due to improper handling of maliciously
    crafted content. An unauthenticated, remote attacker can exploit this to execute arbitrary code. (CVE-2019-8644,
    CVE-2019-8666, CVE-2019-8669, CVE-2019-8671, CVE-2019-8672, CVE-2019-8673, CVE-2019-8676, CVE-2019-8677,
    CVE-2019-8678, CVE-2019-8679, CVE-2019-8680, CVE-2019-8681, CVE-2019-8683, CVE-2019-8684, CVE-2019-8685,
    CVE-2019-8686, CVE-2019-8687, CVE-2019-8688, CVE-2019-8689)

  - A cross-site scripting (XSS) vulnerability exists with in the WebKit due to improper handling synchronous page loads.
    An unauthenticated, remote attacker can exploit this, by convincing a user to click a specially crafted URL, to
    execute arbitrary script code in a user's browser session. (CVE-2019-8649)

  - A cross-site scripting (XSS) vulnerability exists with in the WebKit due to improper validation of user-supplied
    input before returning it to users. An unauthenticated, remote attacker can exploit this, by convincing a user to
    click a specially crafted URL, to execute arbitrary script code in a user's browser session. (CVE-2019-8658)

  - A cross-site scripting (XSS) vulnerability exists with in the WebKit due to improper handling of document loads. An
    unauthenticated, remote attacker can exploit this, by convincing a user to click a specially crafted URL, to execute
    arbitrary script code in a user's browser session. (CVE-2019-8690)

  - An information disclosure vulnerability exists in the included libxslt library due to improper input validation. An
    unauthenticated, remote attacker can exploit this, to disclose potentially sensitive information. (CVE-2019-13118)");
  script_set_attribute(attribute:"see_also", value:"https://support.apple.com/en-us/HT210357");
  script_set_attribute(attribute:"see_also", value:"https://support.apple.com/en-us/HT210358");
  script_set_attribute(attribute:"solution", value:
"Upgrade to iCloud version 7.13, 10.6, or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:H/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:H/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2019-8689");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploited_by_malware", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2019/07/23");
  script_set_attribute(attribute:"patch_publication_date", value:"2019/07/23");
  script_set_attribute(attribute:"plugin_publication_date", value:"2019/08/20");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:apple:icloud_for_windows");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Windows");

  script_copyright(english:"This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("icloud_installed.nasl");
  script_require_keys("installed_sw/iCloud");

  exit(0);
}

include('vcf.inc');

app = 'iCloud';

app_info = vcf::get_app_info(app:app, win_local:TRUE);

constraints = [
  {'min_version' : '7.0',  'fixed_version' : '7.13'},
  {'min_version' : '10.0', 'fixed_version' : '10.6'}
];

vcf::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_HOLE, flags:{xss:TRUE});
VendorProductVersionCPE
appleicloud_for_windowscpe:/a:apple:icloud_for_windows

References

Related

nessus 15
apple 16
freebsd 1
mageia 1
openvas 9
kaspersky 2
debian 1
ubuntu 1
suse 2
archlinux 1
osv 2
gentoo 1
prion 18
cve 19
ubuntucve 19
alpinelinux 19
redhatcve 17
veracode 19
debiancve 20
github 1
zdi 6
symantec 1
zdt 3
packetstorm 2
checkpoint_advisories 3
nessus
nessus
Debian DSA-4515-1 : webkit2gtk - security update
2019-09-05 00:00:00
FreeBSD : webkit2-gtk3 -- Multiple vulnerabilities (e45c3669-caf2-11e9-851a-dcf3aaa3f3ff)
2019-09-03 00:00:00
Apple iTunes < 12.9.6 Multiple Vulnerabilities (uncredentialed check)
2019-07-26 00:00:00
apple
apple
About the security content of iCloud for Windows 7.13
2019-07-23 00:00:00
About the security content of iTunes 12.9.6 for Windows
2019-07-23 00:00:00
About the security content of iCloud for Windows 10.6
2019-07-23 00:00:00
freebsd
freebsd
webkit2-gtk3 -- Multiple vulnerabilities
2019-08-29 00:00:00
mageia
mageia
Updated webkit2 packages fix security vulnerabilities
2019-09-15 17:45:31
openvas
openvas
Apple iCloud Security Updates( HT210357 )
2019-07-24 00:00:00
Apple iTunes Security Updates(HT210356)
2019-07-24 00:00:00
Apple iCloud Security Updates(HT210358)
2019-07-24 00:00:00
kaspersky
kaspersky
KLA11526 Multiple vulnerabilities in Apple iTunes
2019-07-23 00:00:00
KLA11527 Multiple vulnerabilities in Apple iCloud
2019-07-25 00:00:00
debian
debian
[SECURITY] [DSA 4515-1] webkit2gtk security update
2019-09-04 20:55:05
ubuntu
ubuntu
WebKitGTK+ vulnerabilities
2019-09-11 00:00:00
suse
suse
Security update for webkit2gtk3 (important)
2019-09-28 00:00:00
Security update for webkit2gtk3 (important)
2019-09-28 00:00:00
archlinux
archlinux
[ASA-201909-1] webkit2gtk: multiple issues
2019-09-04 00:00:00
osv
osv
webkit2gtk - security update
2019-09-04 00:00:00
libxslt Type Confusion vulnerability that affects Nokogiri
2022-05-24 16:49:07
gentoo
gentoo
WebkitGTK+: Multiple vulnerabilities
2019-09-06 00:00:00
prion
prion
Memory corruption
2019-12-18 18:15:00
Memory corruption
2019-12-18 18:15:00
Design/Logic Flaw
2019-07-01 02:15:00
cve
cve
CVE-2019-8685
2019-12-18 18:15:00
CVE-2019-13118
2019-07-01 02:15:00
CVE-2019-8673
2019-12-18 18:15:00
ubuntucve
ubuntucve
CVE-2019-13118
2019-07-01 00:00:00
CVE-2019-8679
2019-12-18 00:00:00
CVE-2019-8686
2019-12-18 00:00:00
alpinelinux
alpinelinux
CVE-2019-13118
2019-07-01 02:15:00
CVE-2019-8686
2019-12-18 18:15:00
CVE-2019-8673
2019-12-18 18:15:00
redhatcve
redhatcve
CVE-2019-8679
2020-09-07 19:49:00
CVE-2019-8686
2020-09-07 19:48:58
CVE-2019-8677
2020-09-07 19:48:46
veracode
veracode
Arbitrary Code Execution
2020-10-01 03:52:41
Arbitrary Code Execution
2020-10-01 03:52:38
Arbitrary Code Execution
2020-10-01 03:52:43
debiancve
debiancve
CVE-2019-13118
2019-07-01 02:15:00
CVE-2019-8673
2019-12-18 18:15:00
CVE-2019-8671
2019-12-18 18:15:00
github
github
libxslt Type Confusion vulnerability that affects Nokogiri
2022-05-24 16:49:07
zdi
zdi
Apple Safari FloatingObjects Use-After-Free Remote Code Execution Vulnerability
2019-07-24 00:00:00
Apple Safari InlineFlowBox Use-After-Free Remote Code Execution Vulnerability
2019-07-24 00:00:00
Apple Safari CSSFontFace Use-After-Free Remote Code Execution Vulnerability
2019-07-24 00:00:00
symantec
symantec
libxslt CVE-2019-13118 Stack Buffer Overflow Vulnerability
2019-06-30 00:00:00
zdt
zdt
WebKit - UXSS via XSLT and Nested Document Replacements Exploit
2019-08-12 00:00:00
macOS / iOS JavaScriptCore - JSValue Use-After-Free in ValueProfiles Exploit
2019-07-30 00:00:00
Webkit JSC: JIT - Uninitialized Variable Access in ArgumentsEliminationPhase::transform Exploit
2019-08-29 00:00:00
packetstorm
packetstorm
JSC BytecodeGenerator::emitEqualityOpImpl Data Mishandling
2019-07-30 00:00:00
Webkit JSC JIT ArgumentsEliminationPhase::transform Uninitialized Variable Access
2019-08-29 00:00:00
checkpoint_advisories
checkpoint_advisories
Apple Multiple Products Memory Corruption (CVE-2019-8684)
2020-07-03 00:00:00
Apple Multiple Products Memory Corruption (CVE-2019-8672)
2020-07-03 00:00:00
Apple Multiple Products Memory Corruption (CVE-2019-8689)
2020-07-03 00:00:00
JSON
Related for ICLOUD_10_6.NASL
nessus15apple16freebsd1mageia1openvas9kaspersky2debian1ubuntu1suse2archlinux1osv2gentoo1prion18cve19ubuntucve19alpinelinux19redhatcve17veracode19debiancve20github1zdi6symantec1zdt3packetstorm2checkpoint_advisories3