Beschreibung
Multiple serious vulnerabilities were found in Apple iTunes. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges, execute arbitrary code, bypass security restrictions, perform cross-site scripting attack, read local files.
Below is a complete list of vulnerabilities:
- Assert failure vulnerability in WebKit can be exploited locally to cause denial of service;
- Vulnerability related to SecurityErrors can be exploited locally to gain privileges;
- Vulnerability in WebKit can be exploited remotely via specially crafted website to execute arbitrary code;
- Vulnerability related to iframe elements can be exploited to bypass security restrictions;
- A cross-site scripting vulnerability can be exploited to execute scripts in the context of another website;
- Multiple memory corruption vulnerabilities can be exploited to execute arbitrary code;
- A cross-site scripting vulnerability can be exploited to read local files.
Ursprüngliche Informationshinweise
CVE Liste
- CVE-2018-4191 critical
- CVE-2018-4311 critical
- CVE-2018-4316 critical
- CVE-2018-4299 critical
- CVE-2018-4323 critical
- CVE-2018-4328 critical
- CVE-2018-4358 critical
- CVE-2018-4359 critical
- CVE-2018-4319 critical
- CVE-2018-4309 critical
- CVE-2018-4197 critical
- CVE-2018-4306 critical
- CVE-2018-4312 critical
- CVE-2018-4314 critical
- CVE-2018-4315 critical
- CVE-2018-4317 critical
- CVE-2018-4318 critical
- CVE-2018-4345 critical
- CVE-2018-4361 critical
Mehr erfahren
Informieren Sie sich über die Statistiken der in Ihrer Region verbreiteten Sicherheitslücken statistics.securelist.com
Sie haben einen Fehler in der Beschreibung der Schwachstelle gefunden? Mitteilen!