← voltar
CVE-2016-4591

CVE-2016-4591

EPSS 4.1%
WebKit in Apple iOS before 9.3.3, Safari before 9.1.2, and tvOS before 9.2.2 mishandles the location variable, which allows remote attackers to access the local filesystem via unspecified vectors.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://lists.apple.com/archives/security-announce/2016/Jul/msg00001.htmlhttp://lists.apple.com/archives/security-announce/2016/Jul/msg00003.htmlhttp://lists.apple.com/archives/security-announce/2016/Jul/msg00004.htmlhttp://packetstormsecurity.com/files/138502/WebKitGTK-SOP-Bypass-Information-Disclosure.htmlhttps://support.apple.com/HT206900https://support.apple.com/HT206902https://support.apple.com/HT206905http://www.securityfocus.com/archive/1/539295/100/0/threadedhttp://www.securityfocus.com/bid/91830http://www.securitytracker.com/id/1036343