Lucene search

K

AppleCVELIST:CVE-2011-0259

HistoryOct 12, 2011 - 6:00 p.m.

CVE-2011-0259

2011-10-1218:00:00

apple

www.cve.org

8.8 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

75.6%

CoreFoundation, as used in Apple iTunes before 10.5, does not properly perform string tokenization, which allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via unspecified vectors.

References

lists.apple.com/archives/Security-announce/2011//Oct/msg00000.html

lists.apple.com/archives/Security-announce/2011//Oct/msg00001.html

lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html

support.apple.com/kb/HT4981

support.apple.com/kb/HT4999

support.apple.com/kb/HT5002

www.securityfocus.com/bid/50067

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16919

8.8 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

75.6%

Related for CVELIST:CVE-2011-0259

nvd1 cve1 prion1 nessus4 openvas4 securityvulns6 seebug1