Beschreibung
Multiple serious vulnerabilities were found in Apple iTunes. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code, cause denial of service and perform cross-site scripting attack.
Below is a complete list of vulnerabilities:
- A memory corruption vulnerability in ICU can be exploited remotely to cause denial of service and possibly to execute arbitrary code;
- Multiple vulnerabilities in Safari Reader feature can be exploited remotely to perform cross-site scripting attack;
- A resource exhaustion vulnerability in WebKit can be exploited remotely to cause denial of service;
- Multiple memory corruption vulnerabilities in WebKit can be exploited remotely via malicious website to execute arbitrary code.
Ursprüngliche Informationshinweise
CVE Liste
- CVE-2018-4398 critical
- CVE-2018-4394 critical
- CVE-2018-4374 critical
- CVE-2018-4377 critical
- CVE-2018-4409 critical
- CVE-2018-4378 critical
- CVE-2018-4372 critical
- CVE-2018-4373 critical
- CVE-2018-4375 critical
- CVE-2018-4376 critical
- CVE-2018-4382 critical
- CVE-2018-4386 critical
- CVE-2018-4392 critical
- CVE-2018-4416 critical
Mehr erfahren
Informieren Sie sich über die Statistiken der in Ihrer Region verbreiteten Sicherheitslücken statistics.securelist.com
Sie haben einen Fehler in der Beschreibung der Schwachstelle gefunden? Mitteilen!