CVE-2014-4410

Description

WebKit, as used in Apple iOS before 8 and Apple TV before 7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2014-09-17-1 and APPLE-SA-2014-09-17-2.

Predictions

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

References

• http://archives.neohapsis.com/archives/bugtraq/2014-09/0106.html
• http://archives.neohapsis.com/archives/bugtraq/2014-09/0107.html
• http://secunia.com/advisories/61306
• http://secunia.com/advisories/61318
• http://support.apple.com/kb/HT6440
• http://support.apple.com/kb/HT6441
• http://support.apple.com/kb/HT6442
• http://www.securityfocus.com/bid/69881
• http://www.securityfocus.com/bid/69966
• http://www.securitytracker.com/id/1030866
• https://exchange.xforce.ibmcloud.com/vulnerabilities/96030
• https://support.apple.com/kb/HT6537
• http://archives.neohapsis.com/archives/bugtraq/2014-09/0106.html
• http://archives.neohapsis.com/archives/bugtraq/2014-09/0107.html
• http://secunia.com/advisories/61306
• http://secunia.com/advisories/61318
• http://support.apple.com/kb/HT6440
• http://support.apple.com/kb/HT6441
• http://support.apple.com/kb/HT6442
• http://www.securityfocus.com/bid/69881
• http://www.securityfocus.com/bid/69966
• http://www.securitytracker.com/id/1030866
• https://exchange.xforce.ibmcloud.com/vulnerabilities/96030
• https://support.apple.com/kb/HT6537

CWEs

CWE-119