Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusTenable9756.PRM
HistoryNov 08, 2016 - 12:00 a.m.

Apple iOS < 10.1 Multiple Vulnerabilities

2016-11-0800:00:00
Tenable
www.tenable.com
18

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.013

Percentile

86.0%

JSON

The version of iOS running on the mobile device is prior to 10.1, and is affected by multiple vulnerabilities in the following components :

  • CFNetwork Proxies (CVE-2016-7579)
  • Contacts (CVE-2016-4686)
  • CoreGraphics (CVE-2016-4673)
  • FaceTime (CVE-2016-7577)
  • FontParser (CVE-2016-4660, CVE-2016-4688)
  • IDS - Connectivity (CVE-2016-4721)
  • iTunes (CVE-2016-4685)
  • Kernel (CVE-2016-4669, CVE-2016-4680, CVE-2016-7613)
  • libarchive (CVE-2016-4679)
  • libxpc (CVE-2016-4675)
  • Safari (CVE-2016-7581)
  • Sandbox Profiles (CVE-2016-4664, CVE-2016-4665)
  • Security (CVE-2016-4670)
  • WebKit (CVE-2016-4666, CVE-2016-4677, CVE-2016-7578)
Binary data 9756.prm
VendorProductVersionCPE
appleiphone_oscpe:/o:apple:iphone_os

References

Related

apple 18
nessus 13
openvas 9
thn 1
threatpost 2
cve 20
cvelist 20
nvd 20
prion 20
zdt 2
ubuntucve 2
zdi 1
packetstorm 1
metasploit 1
cert 1
ubuntu 1
mageia 1
apple
apple
About the security content of iOS 10.1
2016-10-24 00:00:00
About the security content of iOS 10.1 - Apple Support
2017-01-23 05:36:03
About the security content of tvOS 10.0.1 - Apple Support
2017-01-23 05:36:03
nessus
nessus
Apple iOS < 10.1 Multiple Vulnerabilities
2016-10-27 00:00:00
Apple TV < 10.0.1 Multiple Vulnerabilities
2016-10-27 00:00:00
Apple TV < 10.0.1 Multiple Vulnerabilities
2016-11-08 00:00:00
openvas
openvas
Apple Mac OS X Multiple Vulnerabilities-03 (Feb 2017)
2017-02-28 00:00:00
Apple Safari Code Execution And Information Disclosure Vulnerabilities (Feb 2017)
2017-02-22 00:00:00
Apple Mac OS X Code Execution Vulnerability (HT207615)
2017-05-19 00:00:00
thn
thn
Warning! Your iPhone Can Get Hacked Just by Opening a JPEG Image, PDF or Font File
2016-10-24 22:11:00
threatpost
threatpost
Apple Patches iOS Flaw Exploitable by Malicious JPEG
2016-10-25 12:47:34
Apple Patches iTunes, iCloud for Windows, Xcode Server
2016-10-28 11:52:43
cve
cve
CVE-2016-7579
2017-02-20 08:59:01
CVE-2016-4673
2017-02-20 08:59:00
CVE-2016-7581
2017-02-20 08:59:01
cvelist
cvelist
CVE-2016-7581
2017-02-20 08:35:00
CVE-2016-4664
2017-02-20 08:35:00
CVE-2016-4673
2017-02-20 08:35:00
nvd
nvd
CVE-2016-7581
2017-02-20 08:59:01
CVE-2016-4679
2017-02-20 08:59:00
CVE-2016-7579
2017-02-20 08:59:01
prion
prion
Code injection
2017-02-20 08:59:00
Authentication flaw
2017-02-20 08:59:00
Session fixation
2017-02-20 08:59:00
zdt
zdt
OS X / iOS - mach_ports_register Multiple Memory Safety Issues Exploit
2016-11-01 00:00:00
Safari Webkit For iOS 7.1.2 JIT Optimization Bug Exploit
2020-08-15 00:00:00
ubuntucve
ubuntucve
CVE-2016-4666
2016-12-01 00:00:00
CVE-2016-7578
2016-12-01 00:00:00
zdi
zdi
Apple Safari JavaScriptCore Array Out-Of-Bounds Access Remote Code Execution Vulnerability
2016-11-04 00:00:00
packetstorm
packetstorm
Safari Webkit For iOS 7.1.2 JIT Optimization Bug
2020-08-14 00:00:00
metasploit
metasploit
Safari Webkit JIT Exploit for iOS 7.1.2
2020-07-27 07:05:31
cert
cert
HTTP CONNECT and 407 Proxy Authentication Required messages are not integrity protected
2016-08-15 00:00:00
ubuntu
ubuntu
WebKitGTK+ vulnerabilities
2017-01-10 00:00:00
mageia
mageia
Updated webkit2 packages fix security vulnerabilities
2017-03-02 18:11:17

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.013

Percentile

86.0%

JSON
Related for 9756.PRM
apple18nessus13openvas9thn1threatpost2cve20cvelist20nvd20prion20zdt2ubuntucve2zdi1packetstorm1metasploit1cert1ubuntu1mageia1