6 matches found
Apple TV < 10.2 Multiple Vulnerabilities
According to its banner, the version of Apple TV on the remote device is prior to 10.2. It is, therefore, affected by multiple vulnerabilities : - An out-of-bounds read error exists in LibTIFF in the DumpModeEncode function within file tifdumpmode.c. An unauthenticated, remote attacker can exploi...
Apple Webkit Named Property UXSS
Apple Webkit: UXSS by accessing a named property from an unloaded window CVE-2017-2367 The frame is not detached from an unloaded window. We can access to the new document's named properties via the following function. static bool...
Apple Webkit: UXSS by accessing a named property from an unloaded window (CVE-2017-2367)
The frame is not detached from an unloaded window. We can access to the new document's named properties via the following function. static bool jsDOMWindowPropertiesGetOwnPropertySlotNamedItemGetterJSDOMWindowProperties thisObject, Frame& frame, ExecState exec, PropertyName propertyName,...
CVE-2017-2367
creationtimestamp| type| source ---|---|--- 2017-04-04 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/41801...
CVE-2017-2367
CVE-2017-2367 is documented as a WebKit/Safari family issue affecting Apple platforms (iOS before 10.3, Safari before 10.1, tvOS before 10.2). The description states a remote attacker can bypass the Same Origin Policy and obtain sensitive information via a crafted website. Connected docs enumerat...
CVE-2017-2367
An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. tvOS before 10.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web...