Описание
WebKit in Apple Safari before 6.2.7, 7.x before 7.1.7, and 8.x before 8.0.7, as used in Apple iOS before 8.4 and other products, does not properly restrict rename operations on WebSQL tables, which allows remote attackers to access an arbitrary web site's database via a crafted web site.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | ignored | no update available |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was ignored [no update available]] |
| esm-infra/xenial | ignored | no update available |
| precise | DNE | |
| trusty | ignored | end of standard support |
| trusty/esm | DNE | trusty was ignored [no update available] |
| upstream | needs-triage | |
| utopic | ignored | end of life |
| vivid | ignored | end of life |
| vivid/stable-phone-overlay | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | ignored | no update available |
| esm-apps/xenial | ignored | no update available |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was ignored [no update available]] |
| precise | ignored | end of life |
| trusty | ignored | end of standard support |
| trusty/esm | DNE | trusty was ignored [no update available] |
| upstream | needs-triage | |
| utopic | ignored | end of life |
| vivid | ignored | end of life |
| vivid/stable-phone-overlay | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-infra-legacy/trusty | DNE | |
| precise | ignored | end of life |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | needs-triage | |
| utopic | DNE | |
| vivid | DNE | |
| vivid/stable-phone-overlay | DNE | |
| vivid/ubuntu-core | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 2.4.10-0ubuntu1 |
| esm-apps/xenial | released | 2.4.10-0ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [2.4.10-0ubuntu0.14.04.1]] |
| precise | DNE | |
| trusty | released | 2.4.10-0ubuntu0.14.04.1 |
| trusty/esm | DNE | trusty was released [2.4.10-0ubuntu0.14.04.1] |
| upstream | needs-triage | |
| utopic | ignored | end of life |
| vivid | ignored | end of life |
| vivid/stable-phone-overlay | DNE |
Показывать по
Ссылки на источники
EPSS
6.8 Medium
CVSS2
Связанные уязвимости
WebKit in Apple Safari before 6.2.7, 7.x before 7.1.7, and 8.x before 8.0.7, as used in Apple iOS before 8.4 and other products, does not properly restrict rename operations on WebSQL tables, which allows remote attackers to access an arbitrary web site's database via a crafted web site.
WebKit in Apple Safari before 6.2.7, 7.x before 7.1.7, and 8.x before 8.0.7, as used in Apple iOS before 8.4 and other products, does not properly restrict rename operations on WebSQL tables, which allows remote attackers to access an arbitrary web site's database via a crafted web site.
EPSS
6.8 Medium
CVSS2