OpenCVE

WebKit, as used in Apple iTunes before 10.7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-09-12-1.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:M/Au:N/C:P/I:P/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Apple	Itunes

Configuration 1 [-]

OR	cpe:2.3:a:apple:itunes::::::::
	cpe:2.3:a:apple:itunes:4.0.0:::::::*
	cpe:2.3:a:apple:itunes:4.0.0:-:windows:::::*
	cpe:2.3:a:apple:itunes:4.0.1:::::::*
	cpe:2.3:a:apple:itunes:4.0.1:-:windows:::::*
	cpe:2.3:a:apple:itunes:4.1.0:::::::*
	cpe:2.3:a:apple:itunes:4.1.0:-:windows:::::*
	cpe:2.3:a:apple:itunes:4.2.0:::::::*
	cpe:2.3:a:apple:itunes:4.2.0:-:windows:::::*
	cpe:2.3:a:apple:itunes:4.5:::::::*
	cpe:2.3:a:apple:itunes:4.5::windows:::::
	cpe:2.3:a:apple:itunes:4.5.0:::::::*
	cpe:2.3:a:apple:itunes:4.5.0:-:windows:::::*
	cpe:2.3:a:apple:itunes:4.6:::::::*
	cpe:2.3:a:apple:itunes:4.6::windows:::::
	cpe:2.3:a:apple:itunes:4.6.0:::::::*
	cpe:2.3:a:apple:itunes:4.6.0:-:windows:::::*
	cpe:2.3:a:apple:itunes:4.7:::::::*
	cpe:2.3:a:apple:itunes:4.7::windows:::::
	cpe:2.3:a:apple:itunes:4.7.0:::::::*
	cpe:2.3:a:apple:itunes:4.7.0:-:windows:::::*
	cpe:2.3:a:apple:itunes:4.7.1:::::::*
	cpe:2.3:a:apple:itunes:4.7.1::windows:::::
	cpe:2.3:a:apple:itunes:4.7.1:-:windows:::::*
	cpe:2.3:a:apple:itunes:4.7.2:::::::*
	cpe:2.3:a:apple:itunes:4.8.0:::::::*
	cpe:2.3:a:apple:itunes:4.8.0:-:windows:::::*
	cpe:2.3:a:apple:itunes:4.9.0:::::::*
	cpe:2.3:a:apple:itunes:4.9.0:-:windows:::::*
	cpe:2.3:a:apple:itunes:5.0:::::::*
	cpe:2.3:a:apple:itunes:5.0::windows:::::
	cpe:2.3:a:apple:itunes:5.0.0:::::::*
	cpe:2.3:a:apple:itunes:5.0.0:-:windows:::::*
	cpe:2.3:a:apple:itunes:5.0.1:::::::*
	cpe:2.3:a:apple:itunes:5.0.1:-:windows:::::*
	cpe:2.3:a:apple:itunes:6.0.0:::::::*
	cpe:2.3:a:apple:itunes:6.0.0:-:windows:::::*
	cpe:2.3:a:apple:itunes:6.0.1:::::::*
	cpe:2.3:a:apple:itunes:6.0.1::windows:::::
	cpe:2.3:a:apple:itunes:6.0.1:-:windows:::::*
	cpe:2.3:a:apple:itunes:6.0.2:::::::*
	cpe:2.3:a:apple:itunes:6.0.2::windows:::::
	cpe:2.3:a:apple:itunes:6.0.2:-:windows:::::*
	cpe:2.3:a:apple:itunes:6.0.3:::::::*
	cpe:2.3:a:apple:itunes:6.0.3:-:windows:::::*
	cpe:2.3:a:apple:itunes:6.0.4:::::::*
	cpe:2.3:a:apple:itunes:6.0.4::windows:::::
	cpe:2.3:a:apple:itunes:6.0.4:-:windows:::::*
	cpe:2.3:a:apple:itunes:6.0.5:::::::*
	cpe:2.3:a:apple:itunes:6.0.5:-:windows:::::*
	cpe:2.3:a:apple:itunes:7.0.0:::::::*
	cpe:2.3:a:apple:itunes:7.0.0:-:windows:::::*
	cpe:2.3:a:apple:itunes:7.0.1:::::::*
	cpe:2.3:a:apple:itunes:7.0.1:-:windows:::::*
	cpe:2.3:a:apple:itunes:7.0.2:::::::*
	cpe:2.3:a:apple:itunes:7.0.2::windows:::::
	cpe:2.3:a:apple:itunes:7.0.2:-:windows:::::*
	cpe:2.3:a:apple:itunes:7.1.0:::::::*
	cpe:2.3:a:apple:itunes:7.1.0:-:windows:::::*
	cpe:2.3:a:apple:itunes:7.1.1:::::::*
	cpe:2.3:a:apple:itunes:7.1.1:-:windows:::::*
	cpe:2.3:a:apple:itunes:7.2.0:::::::*
	cpe:2.3:a:apple:itunes:7.2.0:-:windows:::::*
	cpe:2.3:a:apple:itunes:7.3.0:::::::*
cpe:2.3:a:apple:itunes:7.3.0:-:windows:::::*
cpe:2.3:a:apple:itunes:7.3.1:::::::*
cpe:2.3:a:apple:itunes:7.3.1:-:windows:::::*
cpe:2.3:a:apple:itunes:7.3.2:::::::*
cpe:2.3:a:apple:itunes:7.3.2::windows:::::
cpe:2.3:a:apple:itunes:7.3.2:-:windows:::::*
cpe:2.3:a:apple:itunes:7.4:::::::*
cpe:2.3:a:apple:itunes:7.4::windows:::::
cpe:2.3:a:apple:itunes:7.4.0:::::::*
cpe:2.3:a:apple:itunes:7.4.0:-:windows:::::*
cpe:2.3:a:apple:itunes:7.4.1:::::::*
cpe:2.3:a:apple:itunes:7.4.1::windows:::::
cpe:2.3:a:apple:itunes:7.4.1:-:windows:::::*
cpe:2.3:a:apple:itunes:7.4.2:::::::*
cpe:2.3:a:apple:itunes:7.4.2::windows:::::
cpe:2.3:a:apple:itunes:7.4.2:-:windows:::::*
cpe:2.3:a:apple:itunes:7.4.3:::::::*
cpe:2.3:a:apple:itunes:7.4.3::windows:::::
cpe:2.3:a:apple:itunes:7.5:::::::*
cpe:2.3:a:apple:itunes:7.5::windows:::::
cpe:2.3:a:apple:itunes:7.5.0:::::::*
cpe:2.3:a:apple:itunes:7.5.0:-:windows:::::*
cpe:2.3:a:apple:itunes:7.6:::::::*
cpe:2.3:a:apple:itunes:7.6.0:::::::*
cpe:2.3:a:apple:itunes:7.6.0:-:windows:::::*
cpe:2.3:a:apple:itunes:7.6.1:::::::*
cpe:2.3:a:apple:itunes:7.6.1::windows:::::
cpe:2.3:a:apple:itunes:7.6.1:-:windows:::::*
cpe:2.3:a:apple:itunes:7.6.2:::::::*
cpe:2.3:a:apple:itunes:7.6.2:-:windows:::::*
cpe:2.3:a:apple:itunes:7.7:::::::*
cpe:2.3:a:apple:itunes:7.7.0:::::::*
cpe:2.3:a:apple:itunes:7.7.0:-:windows:::::*
cpe:2.3:a:apple:itunes:7.7.1:::::::*
cpe:2.3:a:apple:itunes:7.7.1::windows:::::
cpe:2.3:a:apple:itunes:7.7.1:-:windows:::::*
cpe:2.3:a:apple:itunes:8.0.0:::::::*
cpe:2.3:a:apple:itunes:8.0.0:-:windows:::::*
cpe:2.3:a:apple:itunes:8.0.1:::::::*
cpe:2.3:a:apple:itunes:8.0.1:-:windows:::::*
cpe:2.3:a:apple:itunes:9.0.0:::::::*
cpe:2.3:a:apple:itunes:9.0.1:::::::*
cpe:2.3:a:apple:itunes:9.0.2:::::::*
cpe:2.3:a:apple:itunes:9.0.3:::::::*
cpe:2.3:a:apple:itunes:9.1:::::::*
cpe:2.3:a:apple:itunes:9.1.1:::::::*
cpe:2.3:a:apple:itunes:9.2:::::::*
cpe:2.3:a:apple:itunes:9.2.1:::::::*
cpe:2.3:a:apple:itunes:10.0:::::::*
cpe:2.3:a:apple:itunes:10.0.1:::::::*
cpe:2.3:a:apple:itunes:10.1:::::::*
cpe:2.3:a:apple:itunes:10.1.1:::::::*
cpe:2.3:a:apple:itunes:10.1.1.4:::::::*
cpe:2.3:a:apple:itunes:10.1.2:::::::*
cpe:2.3:a:apple:itunes:10.2:::::::*
cpe:2.3:a:apple:itunes:10.2.2.12:::::::*
cpe:2.3:a:apple:itunes:10.3:::::::*
cpe:2.3:a:apple:itunes:10.3.1:::::::*
cpe:2.3:a:apple:itunes:10.4:::::::*
cpe:2.3:a:apple:itunes:10.4.0.80:::::::*
cpe:2.3:a:apple:itunes:10.4.1:::::::*
cpe:2.3:a:apple:itunes:10.4.1.10:::::::*
cpe:2.3:a:apple:itunes:10.5:::::::*
cpe:2.3:a:apple:itunes:10.5.1:::::::*
cpe:2.3:a:apple:itunes:10.5.1.42:::::::*
cpe:2.3:a:apple:itunes:10.5.2:::::::*
cpe:2.3:a:apple:itunes:10.5.3:::::::*
cpe:2.3:a:apple:itunes:10.6:::::::*
cpe:2.3:a:apple:itunes:10.6.1:::::::*

No data.

References

Link	Providers
http://lists.apple.com/archives/security-announce/2012/Sep/msg00001.html
http://lists.apple.com/archives/security-announce/2012/Sep/msg00005.html
http://osvdb.org/85415
http://support.apple.com/kb/HT5485
http://support.apple.com/kb/HT5502
http://www.securityfocus.com/bid/55534
https://exchange.xforce.ibmcloud.com/vulnerabilities/78548
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17544

History

No history.

MITRE

Status: PUBLISHED

Assigner: apple

Published: 2012-09-13T10:00:00

Updated: 2024-08-06T20:13:51.651Z

Reserved: 2012-06-19T00:00:00

Link: CVE-2012-3654

Vulnrichment

No data.

NVD

Status : Modified

Published: 2012-09-13T10:30:19.807

Modified: 2024-11-21T01:41:21.530

Link: CVE-2012-3654

Redhat

No data.

Metrics

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Affected Vendors & Products

Metrics

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object