← volver
CVE-2016-4591

CVE-2016-4591

EPSS 4.1%
WebKit in Apple iOS before 9.3.3, Safari before 9.1.2, and tvOS before 9.2.2 mishandles the location variable, which allows remote attackers to access the local filesystem via unspecified vectors.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://lists.apple.com/archives/security-announce/2016/Jul/msg00001.htmlhttp://lists.apple.com/archives/security-announce/2016/Jul/msg00003.htmlhttp://lists.apple.com/archives/security-announce/2016/Jul/msg00004.htmlhttp://packetstormsecurity.com/files/138502/WebKitGTK-SOP-Bypass-Information-Disclosure.htmlhttps://support.apple.com/HT206900https://support.apple.com/HT206902https://support.apple.com/HT206905http://www.securityfocus.com/archive/1/539295/100/0/threadedhttp://www.securityfocus.com/bid/91830http://www.securitytracker.com/id/1036343