Svi
Pretraži prema proizvođaču
Pretraži prema CWE oznaci
O usluzi
Pretplate
Jezik
hr
en
CVE-2016-1859 - CERT CVE
CVE-2016-1859
ID
CVE-2016-1859
Sažetak
The WebKit Canvas implementation in Apple iOS before 9.3.2, Safari before 9.1.1, and tvOS before 9.2.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site.
Reference
http://lists.apple.com/archives/security-announce/2016/May/msg00001.html
http://lists.apple.com/archives/security-announce/2016/May/msg00002.html
http://lists.apple.com/archives/security-announce/2016/May/msg00005.html
http://packetstormsecurity.com/files/137229/WebKitGTK-Code-Execution-Denial-Of-Service-Memory-Corruption.html
http://www.securityfocus.com/archive/1/538522/100/0/threaded
http://www.securitytracker.com/id/1035888
http://www.zerodayinitiative.com/advisories/ZDI-16-352
https://support.apple.com/HT206564
https://support.apple.com/HT206565
https://support.apple.com/HT206568
CVSS
Base:
6.8
Impact:
6.4
Exploitability:
8.6
Pristup
Vektor
Složenost
Autentikacija
NETWORK
MEDIUM
NONE
Impact
Povjerljivost
Cjelovitost
Dostupnost
PARTIAL
PARTIAL
PARTIAL
CVSS vektor
AV:N/AC:M/Au:N/C:P/I:P/A:P
Zadnje važnije ažuriranje
25-03-2019 - 17:34
Objavljeno
20-05-2016 - 11:00
