Executive Summary

Informations
NameCVE-2012-0628First vendor Publication2012-03-08
VendorCveLast vendor Modification2018-11-29

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C)
Cvss Base Score9.3Attack RangeNetwork
Cvss Impact Score10Attack ComplexityMedium
Cvss Expoit Score8.6AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0628

CWE : Common Weakness Enumeration

%idName
100 %CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:17458
 
Oval ID: oval:org.mitre.oval:def:17458
Title: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2
Description: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
Family: windows Class: vulnerability
Reference(s): CVE-2012-0628
Version: 6
Platform(s): Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Vista
Microsoft Windows XP
Microsoft Windows 8
Microsoft Windows Server 2012
Product(s): Apple iTunes
Definition Synopsis:

CPE : Common Platform Enumeration

TypeDescriptionCount
Application170
Os97

OpenVAS Exploits

DateDescription
2012-03-20Name : Apple iTunes Multiple Vulnerabilities - Mar12 (Win)
File : nvt/gb_apple_itunes_mult_vuln_mar12_win.nasl
2012-03-13Name : Apple Safari Webkit Multiple Vulnerabilities - March12 (Mac OS X)
File : nvt/gb_apple_safari_webkit_mult_vuln_mar12_macosx.nasl
2012-03-13Name : Apple Safari Webkit Multiple Vulnerabilities - March12 (Win)
File : nvt/gb_apple_safari_webkit_mult_vuln_mar12_win.nasl

Nessus® Vulnerability Scanner

DateDescription
2012-03-12Name : The remote host contains a multimedia application that has multiple vulnerabi...
File : itunes_10_6.nasl - Type : ACT_GATHER_INFO
2012-03-12Name : The remote host contains a multimedia application that has multiple vulnerabi...
File : itunes_10_6_banner.nasl - Type : ACT_GATHER_INFO
2012-03-12Name : The remote host contains a web browser that is affected by several issues.
File : safari_5_1_4.nasl - Type : ACT_GATHER_INFO
2012-03-12Name : The remote host contains a web browser that is affected by several vulnerabil...
File : macosx_Safari5_1_4.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

SourceUrl
APPLE http://lists.apple.com/archives/security-announce/2012/Mar/msg00000.html
http://lists.apple.com/archives/security-announce/2012/Mar/msg00001.html
http://lists.apple.com/archives/security-announce/2012/Mar/msg00003.html
BID http://www.securityfocus.com/bid/52365
SECTRACK http://www.securitytracker.com/id?1026774
SECUNIA http://secunia.com/advisories/48274
http://secunia.com/advisories/48288
http://secunia.com/advisories/48377

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
DateInformations
2019-10-01 01:03:31
  • Multiple Updates
2019-09-27 12:04:40
  • Multiple Updates
2018-11-30 00:18:57
  • Multiple Updates
2018-11-15 12:04:15
  • Multiple Updates
2018-04-07 12:04:26
  • Multiple Updates
2018-01-10 13:23:17
  • Multiple Updates
2018-01-06 09:21:21
  • Multiple Updates
2018-01-05 09:23:13
  • Multiple Updates
2017-11-29 12:04:33
  • Multiple Updates
2017-11-23 12:04:35
  • Multiple Updates
2017-09-19 09:25:11
  • Multiple Updates
2016-09-30 21:24:43
  • Multiple Updates
2016-04-26 21:31:34
  • Multiple Updates
2014-02-17 11:07:58
  • Multiple Updates
2013-11-04 21:22:18
  • Multiple Updates
2013-05-10 22:33:18
  • Multiple Updates