Lucene search

AppleCVE-2013-0992

HistoryMay 20, 2013 - 2:44 p.m.

CVE-2013-0992

2013-05-2014:44:34

CWE-399

apple

web.nvd.nist.gov

cve-2013-0992

webkit

apple itunes

code execution

denial of service

memory corruption

application crash

vulnerability

nvd

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

7.5

Confidence

Low

EPSS

0.012

Percentile

85.1%

JSON

WebKit, as used in Apple iTunes before 11.0.3, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsing, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2013-05-16-1.

Affected configurations

Nvd

Node

appleitunesRange≤11.0.2

appleitunesMatch4.0.0

appleitunesMatch4.0.1

appleitunesMatch4.1.0

appleitunesMatch4.2.0

appleitunesMatch4.5

appleitunesMatch4.5.0

appleitunesMatch4.6

appleitunesMatch4.6.0

appleitunesMatch4.7

appleitunesMatch4.7.0

appleitunesMatch4.7.1

appleitunesMatch4.7.2

appleitunesMatch4.8.0

appleitunesMatch4.9.0

appleitunesMatch5.0

appleitunesMatch5.0.0

appleitunesMatch5.0.1

appleitunesMatch6.0.0

appleitunesMatch6.0.1

appleitunesMatch6.0.2

appleitunesMatch6.0.3

appleitunesMatch6.0.4

appleitunesMatch6.0.5

appleitunesMatch7.0.0

appleitunesMatch7.0.1

appleitunesMatch7.0.2

appleitunesMatch7.1.0

appleitunesMatch7.1.1

appleitunesMatch7.2.0

appleitunesMatch7.3.0

appleitunesMatch7.3.1

appleitunesMatch7.3.2

appleitunesMatch7.4

appleitunesMatch7.4.0

appleitunesMatch7.4.1

appleitunesMatch7.4.2

appleitunesMatch7.4.3

appleitunesMatch7.5

appleitunesMatch7.5.0

appleitunesMatch7.6

appleitunesMatch7.6.0

appleitunesMatch7.6.1

appleitunesMatch7.6.2

appleitunesMatch7.7

appleitunesMatch7.7.0

appleitunesMatch7.7.1

appleitunesMatch8.0.0

appleitunesMatch8.0.1

appleitunesMatch9.0.0

appleitunesMatch9.0.1

appleitunesMatch9.0.2

appleitunesMatch9.0.3

appleitunesMatch9.1

appleitunesMatch9.1.1

appleitunesMatch9.2

appleitunesMatch9.2.1

appleitunesMatch10.0

appleitunesMatch10.0.1

appleitunesMatch10.1

appleitunesMatch10.1.1

appleitunesMatch10.1.1.4

appleitunesMatch10.1.2

appleitunesMatch10.2

appleitunesMatch10.2.2.12

appleitunesMatch10.3

appleitunesMatch10.3.1

appleitunesMatch10.4

appleitunesMatch10.4.0.80

appleitunesMatch10.4.1

appleitunesMatch10.4.1.10

appleitunesMatch10.5

appleitunesMatch10.5.1

appleitunesMatch10.5.1.42

appleitunesMatch10.5.2

appleitunesMatch10.5.3

appleitunesMatch10.6

appleitunesMatch10.6.1

appleitunesMatch10.6.3

AND

microsoftwindows_7

microsoftwindows_vista

microsoftwindows_xpMatch-

VendorProductVersionCPE
appleitunes*cpe:2.3:a:apple:itunes:*:*:*:*:*:*:*:*
appleitunes4.0.0cpe:2.3:a:apple:itunes:4.0.0:*:*:*:*:*:*:*
appleitunes4.0.1cpe:2.3:a:apple:itunes:4.0.1:*:*:*:*:*:*:*
appleitunes4.1.0cpe:2.3:a:apple:itunes:4.1.0:*:*:*:*:*:*:*
appleitunes4.2.0cpe:2.3:a:apple:itunes:4.2.0:*:*:*:*:*:*:*
appleitunes4.5cpe:2.3:a:apple:itunes:4.5:*:*:*:*:*:*:*
appleitunes4.5.0cpe:2.3:a:apple:itunes:4.5.0:*:*:*:*:*:*:*
appleitunes4.6cpe:2.3:a:apple:itunes:4.6:*:*:*:*:*:*:*
appleitunes4.6.0cpe:2.3:a:apple:itunes:4.6.0:*:*:*:*:*:*:*
appleitunes4.7cpe:2.3:a:apple:itunes:4.7:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
apple	itunes	*	cpe:2.3:a:apple:itunes::::::::
apple	itunes	4.0.0	cpe:2.3:a:apple:itunes:4.0.0:::::::*
apple	itunes	4.0.1	cpe:2.3:a:apple:itunes:4.0.1:::::::*
apple	itunes	4.1.0	cpe:2.3:a:apple:itunes:4.1.0:::::::*
apple	itunes	4.2.0	cpe:2.3:a:apple:itunes:4.2.0:::::::*
apple	itunes	4.5	cpe:2.3:a:apple:itunes:4.5:::::::*
apple	itunes	4.5.0	cpe:2.3:a:apple:itunes:4.5.0:::::::*
apple	itunes	4.6	cpe:2.3:a:apple:itunes:4.6:::::::*
apple	itunes	4.6.0	cpe:2.3:a:apple:itunes:4.6.0:::::::*
apple	itunes	4.7	cpe:2.3:a:apple:itunes:4.7:::::::*