2011-03-11

Apple Safari, Apple iOS, Apple TV

ソフト名:Apple Safari 5.0.4未満, Apple iOS 4.3未満 (and iPad , iPod touch), Apple TV 4.2未満
回避策:アップデートにて対応
脆弱性:XSS, スプーフィング攻撃, 機密情報の奪取, システムアクセス, ヒープメモリ破壊, インデックスエラー, バッファオーバーフロー, バウンダリエラー, 解放後使用エラー, CSS挿入, Webキャッシュ汚染, ファイル操作, 不正HTMLの実行, スクリプトコード実行
ソース:
http://www.apple.com/safari/
http://www.apple.com/ios/
http://www.apple.com/ipad/ios4/
http://www.apple.com/ipodtouch/
http://www.apple.com/appletv/
http://support.apple.com/kb/HT4564
http://support.apple.com/kb/HT4565
http://support.apple.com/kb/HT4566
http://secunia.com/advisories/40110/
http://secunia.com/advisories/41738/
http://secunia.com/advisories/43582/
http://secunia.com/advisories/43593/
http://secunia.com/advisories/43696/
http://secunia.com/advisories/43697/
http://secunia.com/advisories/43698/
http://dvw-j.blogspot.com/2011/03/libtiff-red-hat-desktop-red-hat.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1205
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1824
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1792
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2249
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3855
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4008
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4494
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0111
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0112
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0113
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0114
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0115
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0116
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0117
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0118
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0119
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0120
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0121
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0122
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0123
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0124
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0125
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0126
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0127
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0128
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0129
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0130
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0131
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0132
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0133
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0134
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0135
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0136
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0137
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0138
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0139
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0140
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0141
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0142
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0143
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0144
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0145
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0146
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0147
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0148
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0149
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0150
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0151
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0152
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0153
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0154
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0155
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0156
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0157
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0158
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0159
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0160
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0161
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0162
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0163
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0164
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0165
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0166
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0167
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0168
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0169
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0170
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0191
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0192
CVE:CVE-2010-1205, CVE-2010-1792, CVE-2010-1824, CVE-2010-2249, CVE-2010-3855, CVE-2010-4008, CVE-2010-4494, CVE-2011-0111, CVE-2011-0112, CVE-2011-0113, CVE-2011-0114, CVE-2011-0115, CVE-2011-0116, CVE-2011-0117, CVE-2011-0118, CVE-2011-0119, CVE-2011-0120, CVE-2011-0121, CVE-2011-0122, CVE-2011-0123, CVE-2011-0124, CVE-2011-0125, CVE-2011-0126, CVE-2011-0127, CVE-2011-0128, CVE-2011-0129, CVE-2011-0130, CVE-2011-0131, CVE-2011-0132, CVE-2011-0133, CVE-2011-0134, CVE-2011-0135, CVE-2011-0136, CVE-2011-0137, CVE-2011-0138, CVE-2011-0139, CVE-2011-0140, CVE-2011-0141, CVE-2011-0142, CVE-2011-0143, CVE-2011-0144, CVE-2011-0145, CVE-2011-0146, CVE-2011-0147, CVE-2011-0148, CVE-2011-0149, CVE-2011-0150, CVE-2011-0151, CVE-2011-0152, CVE-2011-0153, CVE-2011-0154, CVE-2011-0155, CVE-2011-0156, CVE-2011-0157, CVE-2011-0158, CVE-2011-0159, CVE-2011-0160, CVE-2011-0161, CVE-2011-0162, CVE-2011-0163, CVE-2011-0164, CVE-2011-0165, CVE-2011-0166, CVE-2011-0167, CVE-2011-0168, CVE-2011-0169, CVE-2011-0170, CVE-2011-0191, CVE-2011-0192
危険性:High Risk

0 件のコメント:

コメントを投稿