CVE-2016-1783 (apple_tv, iphone_os, safari)
WebKit in Apple iOS before 9.3, Safari before 9.1, and tvOS before 9.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site.
[월:] 2016년 03월
CVE-2016-1783
CVE-2016-1783
WebKit in Apple iOS before 9.3, Safari before 9.1, and tvOS before 9.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site.
Source: CVE-2016-1783
CVE-2016-1782 (iphone_os, safari)
CVE-2016-1782 (iphone_os, safari)
WebKit in Apple iOS before 9.3 and Safari before 9.1 does not properly restrict redirects that specify a TCP port number, which allows remote attackers to bypass intended port restrictions via a crafted web site.
CVE-2016-1782
CVE-2016-1782
WebKit in Apple iOS before 9.3 and Safari before 9.1 does not properly restrict redirects that specify a TCP port number, which allows remote attackers to bypass intended port restrictions via a crafted web site.
Source: CVE-2016-1782
CVE-2016-1781 (iphone_os, safari)
CVE-2016-1781 (iphone_os, safari)
WebKit in Apple iOS before 9.3 and Safari before 9.1 mishandles attachment URLs, which makes it easier for remote web servers to track users via unspecified vectors.
CVE-2016-1781
CVE-2016-1781
WebKit in Apple iOS before 9.3 and Safari before 9.1 mishandles attachment URLs, which makes it easier for remote web servers to track users via unspecified vectors.
Source: CVE-2016-1781
CVE-2016-1780 (iphone_os)
CVE-2016-1780 (iphone_os)
WebKit in Apple iOS before 9.3 does not prevent hidden web views from reading orientation and motion data, which allows remote attackers to obtain sensitive information about a device’s physical environment via a crafted web site.
Source: CVE-2016-1780 (iphone_os)
CVE-2016-1780
CVE-2016-1780
WebKit in Apple iOS before 9.3 does not prevent hidden web views from reading orientation and motion data, which allows remote attackers to obtain sensitive information about a device’s physical environment via a crafted web site.
Source: CVE-2016-1780
CVE-2016-1779 (iphone_os, safari)
CVE-2016-1779 (iphone_os, safari)
WebKit in Apple iOS before 9.3 and Safari before 9.1 allows remote attackers to bypass the Same Origin Policy and obtain physical-location data via a crafted geolocation request.
CVE-2016-1779
CVE-2016-1779
WebKit in Apple iOS before 9.3 and Safari before 9.1 allows remote attackers to bypass the Same Origin Policy and obtain physical-location data via a crafted geolocation request.
Source: CVE-2016-1779