13 matches found
Apple WebKit Out-of-bounds Read (CVE-2017-13785)
An arbitrary code execution vulnerability has been discovered in Apple WebKit. The vulnerability is due to an error in Apple Webkit while handling certain display properties within the style blocks. A remote attacker could exploit this issue by enticing the target user to open a maliciously craft...
GLSA-201712-01 : WebKitGTK+: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201712-01 WebKitGTK+: Multiple vulnerabilities Multiple vulnerabilities have been discovered in WebKitGTK+. Please review the referenced CVE identifiers for details. Impact : By enticing a victim to visit maliciously crafted web...
WebKit: out-of-bounds read in WebCore::RenderText::localCaretRect(CVE-2017-13785)
There is an out-of-bounds read security vulnerability in WebKit. The vulnerability was confirmed on ASan build of WebKit nightly. ASan log: ================================================================= ==30388==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x6030000f5de6 at pc...
WebKit WebCore::RenderText::localCaretRect Out-Of-Bounds Read
WebKit: out-of-bounds read in WebCore::RenderText::localCaretRect CVE-2017-13785 There is an out-of-bounds read security vulnerability in WebKit. The vulnerability was confirmed on ASan build of WebKit nightly. PoC: ================================================================= max-height: 0;...
CVE-2017-13785
creationtimestamp| type| source ---|---|--- 2017-11-22 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/43170...
CVE-2017-13785
An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote...
CVE-2017-13785
CVE-2017-13785 is a WebKit-related vulnerability affecting Apple devices and software listed by Apple for the 2017-11 window: iOS <11.1, Safari <11.0.1, iCloud on Windows, iTunes for Windows, and tvOS
Apple iCloud Security Update (HT208225) - Windows
Apple iCloud is prone to multiple vulnerabilities. Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Apple iTunes < 12.7.1 WebKit Multiple Vulnerabilities (uncredentialed check)
The version of Apple iTunes installed on the remote Windows host is prior to 12.7.1. It is, therefore, affected by multiple vulnerabilities in webkit as referenced in the HT208224 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-report...
Apple iTunes < 12.7.1 WebKit Multiple Vulnerabilities (credentialed check)
The version of Apple iTunes installed on the remote Windows host is prior to 12.7.1. It is, therefore, affected by multiple vulnerabilities in webkit as referenced in the HT208224 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-report...
About the security content of iTunes 12.7.1 for Windows
About the security content of iTunes 12.7.1 for Windows This document describes the security content of iTunes 12.7.1 for Windows. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patche...
KLA11146 Multiple vulnerabilities in Apple Safari
Multiple serious vulnerabilities have been found in Apple Safari. Vulnerabilities in the WebKit componenent can be exploited remotely via crafted web site to execute arbitrary code. Original advisories About the security content of Safari 11.0.1 Exploitation Public exploits exist for this...
About the security content of Safari 11.0.1
About the security content of Safari 11.0.1 This document describes the security content of Safari 11.0.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are...