20 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-4200
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in certain Apple products. iOS before 11.3.1 is affected. Safari before 11.1 is affected. iCloud before 7.5 on Windows is affected. iTun...
RHEL 7 : webkitgtk (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution CVE-2021-30954...
Fedora 28 : webkit2gtk3 (2018-97c58e29e4)
This update addresses the following vulnerabilities : - CVE-2018-4200 Additional fixes : - Do TLS error checking on GTlsConnection::accept-certificate to finish the load earlier in case of errors. - Properly close the connection to the nested wayland compositor in the Web Process. - Avoid paintin...
Security update for webkit2gtk3 (moderate)
This update for webkit2gtk3 to version 2.20.3 fixes the issues: The following security vulnerabilities were addressed: - CVE-2018-12911: Fixed an off-by-one error in xdgmimegetsimpleglobs boo1101999 - CVE-2017-13884: An unspecified issue allowed remote attackers to execute arbitrary code or cause...
openSUSE Security Update : webkit2gtk3 (openSUSE-2018-1288)
This update for webkit2gtk3 to version 2.20.3 fixes the issues : The following security vulnerabilities were addressed : - CVE-2018-12911: Fixed an off-by-one error in xdgmimegetsimpleglobs boo1101999 - CVE-2017-13884: An unspecified issue allowed remote attackers to execute arbitrary code or cau...
SUSE SLED12 / SLES12 Security Update : webkit2gtk3 (SUSE-SU-2018:3387-1)
This update for webkit2gtk3 to version 2.20.3 fixes the issues : The following security vulnerabilities were addressed : CVE-2018-12911: Fixed an off-by-one error in xdgmimegetsimpleglobs boo1101999 CVE-2017-13884: An unspecified issue allowed remote attackers to execute arbitrary code or cause a...
CVE-2018-4200
An issue was discovered in certain Apple products. iOS before 11.3.1 is affected. Safari before 11.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. The issue involves the "WebKit" component. It allows remote...
CVE-2018-4200
CVE-2018-4200 concerns WebKit in Apple products. A crafted web site could trigger a WebCore::jsElementScrollHeightGetter use-after-free, leading to arbitrary code execution or a denial of service (memory corruption/crash). Affected: iOS < 11.3.1; Safari < 11.1; iCloud for Windows < 7.5; ...
Apple iTunes < 12.7.5 Multiple Vulnerabilities (credentialed check)
The version of Apple iTunes installed on the remote Windows host is prior to 12.7.5. It is, therefore, affected by multiple vulnerabilities as referenced in the HT208852 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version...
KLA11282 Multiple vulnerabilities in Apple iTunes
Multiple serious vulnerabilities have been found in Apple iTunes. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface and obtain sensitive information. Below is a complete list of vulnerabilities: 1. An out-of-bounds read vulnerability in CoreGraphics...
Fedora 26 : webkitgtk4 (2018-6a9fea1b3a)
This update addresses the following vulnerabilities : - CVE-2018-4200 Additional fixes : - Do TLS error checking on GTlsConnection::accept-certificate to finish the load earlier in case of errors. - Properly close the connection to the nested wayland compositor in the Web Process. - Avoid paintin...
Fedora Update for webkit2gtk3 FEDORA-2018-97c58e29e4
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[ASA-201805-9] webkit2gtk: arbitrary code execution
Arch Linux Security Advisory ASA-201805-9 ========================================= Severity: Critical Date : 2018-05-13 CVE-ID : CVE-2018-4200 Package : webkit2gtk Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-692 Summary ======= The package webkit2gtk...
CVE-2018-4200
An issue was discovered in certain Apple products. iOS before 11.3.1 is affected. Safari before 11.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. The issue involves the "WebKit" component. It allows remote...
KDE WebKit Use-after-free Memory Corruption (CVE-2018-4200)
A memory corruption vulnerability exists in KDE WebKit. The vulnerability is due to the way WebKit handles objects in memory. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
WebKit WebCore::jsElementScrollHeightGette Use-After-Free Exploit
There is a use-after-free security vulnerability in WebKit. The vulnerability was confirmed on ASan build of revision 227958 on OSX. WebKit: use-after-free in WebCore::jsElementScrollHeightGetter CVE-2018-4200 There is a use-after-free security vulnerability in WebKit. The vulnerability was...
CVE-2018-4200
creationtimestamp| type| source ---|---|--- 2018-05-02 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/44566...
macOS : Apple Safari 11.1 APPLE-SA-2018-04-24-3 Multiple Vulnerabilities
The version of Apple Safari installed on the remote macOS or Mac OS X host is 11.1, but is missing the security fix APPLE-SA-2018-04-24-3. It is, therefore, affected by multiple vulnerabilities as described in the HT208741 security advisory. C Tenable Network Security, Inc. include"compat.inc"; i...
About the security content of iOS 11.3.1
About the security content of iOS 11.3.1 This document describes the security content of iOS 11.3.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...
About the security content of Safari 11.1
About the security content of Safari 11.1 This document describes the security content of Safari 11.1 v. 11605.1.33.1.4, 12605.1.33.1.4, and 13605.1.33.1.4. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigati...