CVE Reference: CVE-2012-3648

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2012-3648

Description:
WebKit, as used in Apple iTunes before 10.7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-09-12-1.

CVE Status:
Candidate

References:

XF
  http://xforce.iss.net/xforce/xfdb/78555

OVAL
  http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:17246

OSVDB
  85402

CONFIRM
  http://support.apple.com/kb/HT5503
  http://support.apple.com/kb/HT5502
  http://support.apple.com/kb/HT5485

BID
  55534

APPLE
  http://lists.apple.com/archives/security-announce/2012/Sep/msg00005.html
  http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html
  http://lists.apple.com/archives/security-announce/2012/Sep/msg00001.html


Return to the previous page.