5.1 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
0.135 Low
EPSS
Percentile
95.6%
Race condition in WebKit in Apple iOS before 6.0.1 and Safari before 6.0.2
allows remote attackers to execute arbitrary code or cause a denial of
service (application crash) via vectors involving JavaScript arrays.
lists.apple.com/archives/security-announce/2012/Nov/msg00000.html
lists.apple.com/archives/security-announce/2012/Nov/msg00001.html
support.apple.com/kb/HT5567
support.apple.com/kb/HT5568
launchpad.net/bugs/cve/CVE-2012-3748
nvd.nist.gov/vuln/detail/CVE-2012-3748
security-tracker.debian.org/tracker/CVE-2012-3748
www.cve.org/CVERecord?id=CVE-2012-3748