Download
| Alert*
|
oval:org.secpod.oval:def:50303
The host is missing a security update according to Apple advisory, APPLE-SA-2019-1-22-2. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle unspecified vectors. Successful exploitation could allow attackers to cause memory ... oval:org.secpod.oval:def:44867 The host is installed with Apple Mac OS 10.13.3 or 10.12.6 or 10.11.6 and is prone to multiple vulnerabilities. The flaw is present in the application, which fails to properly handle multiple issues. Successful exploitation allows remote attackers to execute arbitrary code or read restricted memory. oval:org.secpod.oval:def:4847 The host is missing an important security update according to Apple advisory, APPLE-SA-2009-03-11. The update is required to fix multiple denial of service vulnerabilities. The flaws are present in the application, which fails to sanitize user supplied input. Successful exploitation could allow atta ... oval:org.secpod.oval:def:50316 The host is missing a security update according to Apple advisory, APPLE-SA-2019-1-22-6. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle crafted web content. Successful exploitation could allow attackers to perform arbi ... oval:org.mitre.oval:def:7061 Use-after-free vulnerability in JavaScriptCore in WebKit in Apple iTunes before 9.2 on Windows, and Apple iOS before 4 on the iPhone and iPod touch, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors related to page transitions, a different ... oval:org.secpod.oval:def:7238 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7239 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7233 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7235 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7230 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7231 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7232 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7240 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7241 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7214 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7229 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7225 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7204 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7205 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7206 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7200 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7203 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:14280 The host is installed with Apple iTunes before 10.5 and is prone to denial of service vulnerability. A flaw is present in the application, which fail to handle string tokenization. Successful exploitation could allow remote attackers to execute remote code or cause unexpected application termination ... oval:org.secpod.oval:def:354 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to implement the .sort function for JavaScript arrays. Successful exploitation could allow remote attackers to execute arbitrary ... oval:org.secpod.oval:def:353 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:356 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:355 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:350 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:352 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:351 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:347 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:346 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:349 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to parse HTML elements associated with document namespaces. Successful exploitation could allow remote attackers to execute arbit ... oval:org.secpod.oval:def:348 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:361 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to buffer overflow vulnerability. A flaw is present in LibTIFF in ImageIO, which fails to handle TIFF images with JPEG encoding. Successful exploitation could allow remote attackers to execute arbitrary cod ... oval:org.secpod.oval:def:360 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to heap based buffer overflow vulnerability. A flaw is present in ImageIO in CoreGraphics, which fails to handle crafted International Color Consortium (ICC) profile in a JPEG image. Successful exploitation ... oval:org.secpod.oval:def:362 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to buffer overflow vulnerability. A flaw is present in LibTIFF in ImageIO, which fails to handle TIFF images with CCITT Group 4 encoding. Successful exploitation could allow remote attackers to execute arb ... oval:org.secpod.oval:def:358 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:357 The host is installed with Apple iTunes before 10.5 or Apple Safari before 5.0.5 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:359 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:332 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in Cascading Style Sheets (CSS) 2.1 Visual Formatting Model implementation in WebKit, which fails to prevent man-in-the-middle attack while browsing the ... oval:org.secpod.oval:def:331 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:334 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:333 The host is installed Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to handle glyph data during layout actions for floating blocks associated with pseudo-elements. Successful exploitation could allow re ... oval:org.secpod.oval:def:330 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:329 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:328 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:7190 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:325 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:324 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:327 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:326 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:7196 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7197 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7199 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7195 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:343 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:342 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:345 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:344 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:341 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:340 The host is installed Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attackers t ... oval:org.secpod.oval:def:339 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:336 The host is installed Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attackers t ... oval:org.secpod.oval:def:335 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:338 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:337 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:310 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:312 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:311 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:7189 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:321 The host is installed Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attackers t ... oval:org.secpod.oval:def:320 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:323 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:322 The host is installed Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attackers t ... oval:org.secpod.oval:def:318 The host is installed with Apple iTunes and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attackers to execute arbitrary code or cause a ... oval:org.secpod.oval:def:319 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:314 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the DOM implementation in WebKit, which fails to handle DOM manipulations associated with event listeners during processing of range objects. Success ... oval:org.secpod.oval:def:313 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:316 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:315 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in setOuterText method in htmlelement library in WebKit, which fails to handle DOM manipulations during iTunes Store browsing. Successful exploitation c ... oval:org.secpod.oval:def:7185 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7181 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7184 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7277 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7278 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7279 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7273 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7274 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7275 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7276 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7270 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7271 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7272 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7284 The host is missing a security update according to Apple advisory, APPLE-SA-2012-09-12-1. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbit ... oval:org.secpod.oval:def:7280 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7281 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7282 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7283 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7255 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7256 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7257 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7251 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7252 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7253 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.mitre.oval:def:5336 Apple iTunes before 8.1 does not properly inform the user about the origin of an authentication request, which makes it easier for remote podcast servers to trick a user into providing a username and password when subscribing to a crafted podcast. oval:org.secpod.oval:def:7267 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7268 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7269 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7264 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7265 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:50300 The host is installed with Apple Mac OS X 10.14.2 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle an input validation issue. Successful exploitation allows an attacker to execute arbitrary code through a maliciously ... oval:org.secpod.oval:def:50305 The host is installed with Apple iCloud before 7.10 or Apple iTunes before 12.9.3 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle maliciously crafted SQL query. Successful exploitation could allow attackers to perfo ... oval:org.secpod.oval:def:317 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:45925 The host is installed with Apple Mac OS X 10.13.4 and is prone to a security authorization vulnerability. A flaw is present in the application, which fails to properly handle a state management issue. Successful exploitation allows attackers to read a persistent device identifier. oval:org.secpod.oval:def:45926 The host is installed with Apple Mac OS X 10.13.4 and is prone to a security authorization vulnerability. A flaw is present in the application, which fails to properly handle a state management issue. Successful exploitation allows attackers to read a persistent device identifier. oval:org.secpod.oval:def:45927 The host is installed with Apple Mac OS X 10.13.4 and is prone to a security authorization vulnerability. A flaw is present in the application, which fails to properly handle a state management issue. Successful exploitation allows attackers to read a persistent device identifier. oval:org.secpod.oval:def:1801183 CVE-2018-4246 Processing maliciously crafted web content may lead to arbitrary code execution. A type confusion issue was addressed with improved memory handling. Versions affected: WebKitGTK+ before 2.20.4 CVE-2018-4261 Processing maliciously crafted web content may lead to arbitrary code execution ... oval:org.secpod.oval:def:44802 The host is missing a security update according to Apple advisory, APPLE-SA-2018-3-29-8. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly perform input validation. Successful exploitation could allow attackers to disclose sensi ... oval:org.secpod.oval:def:704334 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK+. oval:org.secpod.oval:def:2000193 In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks. oval:org.secpod.oval:def:11184 The host is installed with Apple iTunes before 11.0.3 or Apple Safari before 6.0.5 and is prone to a man in the middle attack vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to unexpe ... oval:org.secpod.oval:def:11185 The host is installed with Apple iTunes before 11.0.3 or Apple Safari before 6.0.5 and is prone to a man in the middle attack vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to unexpe ... oval:org.secpod.oval:def:11188 The host is installed with Apple iTunes before 11.0.3 or Apple Safari before 6.0.5 and is prone to a man in the middle attack vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to unexpe ... oval:org.secpod.oval:def:11180 The host is installed with Apple iTunes before 11.0.3 or Apple Safari before 6.0.5 and is prone to a man in the middle attack vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to unexpe ... oval:org.secpod.oval:def:11181 The host is installed with Apple iTunes before 11.0.3 or Apple Safari before 6.0.5 and is prone to a man in the middle attack vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to unexpe ... oval:org.secpod.oval:def:11182 The host is installed with Apple iTunes before 11.0.3 or Apple Safari before 6.0.5 and is prone to a man in the middle attack vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to unexpe ... oval:org.secpod.oval:def:11183 The host is installed with Apple iTunes before 11.0.3 or Apple Safari before 6.0.5 and is prone to a man in the middle attack vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to unexpe ... oval:org.secpod.oval:def:11131 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arbitr ... oval:org.secpod.oval:def:11132 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arbitr ... oval:org.secpod.oval:def:11133 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arbitr ... oval:org.secpod.oval:def:11134 The host is installed with Apple iTunes before 11.0.3.42 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle a multiple memory corruption issues. Successful exploitation could allow attackers to execute arbitrary code or cras ... oval:org.secpod.oval:def:11135 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arbitr ... oval:org.secpod.oval:def:11136 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arbitr ... oval:org.secpod.oval:def:11162 The host is installed with Apple iTunes before 11.0.3.42 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arb ... oval:org.secpod.oval:def:11164 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arbitr ... oval:org.secpod.oval:def:11165 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arbitr ... oval:org.secpod.oval:def:11166 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arbitr ... oval:org.secpod.oval:def:11167 The host is installed with Apple iTunes before 11.0.3 or Apple Safari before 6.0.5 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to unexpec ... oval:org.secpod.oval:def:11168 The host is installed with Apple iTunes before 11.0.3 or Apple Safari before 6.0.5 and is prone to a man in the middle attack vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to unexpe ... oval:org.secpod.oval:def:11169 The host is installed with Apple iTunes before 11.0.3 or Apple Safari before 6.0.5 and is prone to a man in the middle attack vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to unexpe ... oval:org.secpod.oval:def:11173 The host is installed with Apple iTunes before 11.0.3 or Apple Safari before 6.0.5 and is prone to a man in the middle attack vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to unexpe ... oval:org.secpod.oval:def:11174 The host is installed with Apple iTunes before 11.0.3 or Apple Safari before 6.0.5 and is prone to a man in the middle attack vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to unexpe ... oval:org.secpod.oval:def:11175 The host is installed with Apple iTunes before 11.0.3 or Apple Safari before 6.0.5 and is prone to a man in the middle attack vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to unexpe ... oval:org.secpod.oval:def:11176 The host is installed with Apple iTunes before 11.0.3 or Apple Safari before 6.0.5 and is prone to a man in the middle attack vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to unexpe ... oval:org.secpod.oval:def:11177 The host is installed with Apple iTunes before 11.0.3 or Apple Safari before 6.0.5 and is prone to a man in the middle attack vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to unexpe ... oval:org.secpod.oval:def:11178 The host is installed with Apple iTunes before 11.0.3 or Apple Safari before 6.0.5 and is prone to a man in the middle attack vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to unexpe ... oval:org.secpod.oval:def:11179 The host is installed with Apple iTunes before 11.0.3 or Apple Safari before 6.0.5 and is prone to a man in the middle attack vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to unexpe ... oval:org.secpod.oval:def:11170 The host is installed with Apple iTunes before 11.0.3 or Apple Safari before 6.0.5 and is prone to a man in the middle attack vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to unexpe ... oval:org.secpod.oval:def:11171 The host is installed with Apple iTunes before 11.0.3 or Apple Safari before 6.0.5 and is prone to a man in the middle attack vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to unexpe ... oval:org.secpod.oval:def:11172 The host is installed with Apple iTunes before 11.0.3, Apple Safari before 6.0.5 on Mac OS X 10.7 or later or Safari before 5.1.10 on Mac OS X 10.6 and is prone to a man in the middle attack vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruptio ... oval:org.secpod.oval:def:11140 The host is installed with Apple iTunes before 11.0.3.42 and is prone to man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:11141 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arbitr ... oval:org.secpod.oval:def:11142 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arbitr ... oval:org.secpod.oval:def:11143 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arbitr ... oval:org.secpod.oval:def:11144 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arbitr ... oval:org.secpod.oval:def:11145 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arbitr ... oval:org.secpod.oval:def:11146 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arbitr ... oval:org.secpod.oval:def:11137 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arbitr ... oval:org.secpod.oval:def:11138 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arbitr ... oval:org.secpod.oval:def:11139 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arbitr ... oval:org.secpod.oval:def:3352 The host is installed with Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to a denial of service vulnerability. A flaw is present in the applications, which fail to handle via vectors related to iTunes Store browsing. Successful exploitation could allow to crash the service. oval:org.secpod.oval:def:3350 The host is installed with Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to a denial of service vulnerability. A flaw is present in the applications, which fail to handle via vectors related to iTunes Store browsing. Successful exploitation could allow to crash the service. oval:org.secpod.oval:def:3351 The host is installed with Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to a denial of service vulnerability. A flaw is present in the applications, which fail to handle via vectors related to iTunes Store browsing. Successful exploitation could allow to crash the service. oval:org.secpod.oval:def:3354 The host is installed with Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to a denial of service vulnerability. A flaw is present in the applications, which fail to handle via vectors related to iTunes Store browsing. Successful exploitation could allow to crash the service. oval:org.secpod.oval:def:3974 The host is missing an important security update according to Apple advisory, APPLE-SA-2011-10-11-1. The update is required to fix multiple denial of service vulnerabilities. The flaw is present in the application, which fails to sanitize user supplied input. Successful exploitation could allow atta ... oval:org.secpod.oval:def:3975 The host is missing an important security update according to Apple advisory, APPLE-SA-2011-10-11-1. The update is required to fix multiple denial of service vulnerabilities. The flaws are present in the application, which fails to sanitize user supplied input. Successful exploitation could allow at ... oval:org.secpod.oval:def:45936 The host is installed with Apple Safari before 11.1.1 and is prone to an address bar spoofing vulnerability. A flaw is present in the applications, which fails to properly handle inconsistent user interface issues. Successful exploitation may lead to address bar spoofing. oval:org.secpod.oval:def:45944 The host is missing a security update according to Apple advisory, APPLE-SA-2018-06-01-2. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly perform input validation. Successful exploitation could allow attackers to cause arbitra ... oval:org.secpod.oval:def:2001499 An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari before 11.1.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. watchOS before 4.3.1 is affected. The issue involves the "WebKit" com ... oval:org.secpod.oval:def:2000468 An issue was discovered in certain Apple products. iOS before 11.4 is affected. iOS before 11.3.1 is affected. Safari before 11.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. The issue involves the "WebKit" componen ... oval:org.secpod.oval:def:45307 The host is installed with Apple Safari before 11.1 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fails to properly handle a memory corruption issue. Successful exploitation may lead to arbitrary code execution. oval:org.secpod.oval:def:45305 The host is missing a security update according to Apple advisory, APPLE-SA-2018-04-24-3. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly perform input validation. Successful exploitation could allow attackers to disclose sens ... oval:org.secpod.oval:def:4411 The host is missing an important security update according to APPLE-SA-2010-06-16-1. The flaws are present in the application, which fails to sanitize user supplied data. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:45884 The host is installed with Apple iCloud before 7.5 or Apple iTunes before 12.7.5 and is prone to a race condition vulnerability. A flaw is present in the application, which fails to properly perform input validation. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:45885 The host is installed with Apple iCloud before 7.5 or Apple iTunes before 12.7.5 and is prone to a race condition vulnerability. A flaw is present in the application, which fails to properly perform input validation. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:45895 The host is missing a security update according to Apple advisory, APPLE-SA-2018-06-01-3. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary ... oval:org.secpod.oval:def:45896 The host is missing a security update according to Apple advisory, APPLE-SA-2018-06-01-3. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary ... oval:org.secpod.oval:def:11187 The host is missing an important security update according to Apple security advisory, APPLE-2013-05-16-1. The update is required to fix man in the middle attack vulnerability. The flaws are present in the application, which fails to properly handle multiple memory corruption issues. Successful expl ... oval:org.secpod.oval:def:11163 The host is missing an important security update according to Apple security advisory, APPLE-2013-05-16-1. The update is required to fix man in the middle attack vulnerability. The flaws are present in the application, which fails to properly handle multiple memory corruption issues. Successful expl ... oval:org.secpod.oval:def:2901 The host is installed with Apple iTunes before 10.2 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to execute arbitrary code or cause ... oval:org.secpod.oval:def:2900 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to ex ... oval:org.secpod.oval:def:2903 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to ex ... oval:org.secpod.oval:def:2902 The host is installed with Apple iTunes before 10.2 or Apple Safari 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to execute a ... oval:org.secpod.oval:def:2912 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to ex ... oval:org.secpod.oval:def:2911 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to ex ... oval:org.secpod.oval:def:2914 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to ex ... oval:org.secpod.oval:def:2913 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to ex ... oval:org.secpod.oval:def:2905 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to ex ... oval:org.secpod.oval:def:2904 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to ex ... oval:org.secpod.oval:def:2907 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to use-after-free vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to execu ... oval:org.secpod.oval:def:2906 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to ex ... oval:org.secpod.oval:def:2909 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to ex ... oval:org.secpod.oval:def:2908 The host is installed with Apple iTunes before 10.2 and Apple Safari 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to properly handle access glyph data during layout actions for floating blocks associated with pseudo-elements. Successful expl ... oval:org.secpod.oval:def:11186 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly verify X.509 certificates. Successful exploitation could allow attackers to spoof HTTPS servers via an arbitrary certificate. oval:org.secpod.oval:def:3098 The host is installed with Apple QuickTime before 7.7.1 or Apple iTunes before 10.5 and is prone to an buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted movie file with H.264 encoding. Successful exploitation could allow attackers to execute arbitra ... oval:org.secpod.oval:def:3966 The host is installed with Apple iTunes before 10.5.1 and is prone to a DNS cache poisoning vulnerability. A flaw is present in the application, as it fails to handle a Trojan horse update. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:3969 The host is missing an important security update according to Apple advisory, APPLE-SA-2011-11-14-1. The update is required to fix a DNS cache poisoning vulnerability. A flaw is present in the application, as it fails to handle a Trojan horse update. Successful exploitation could allow attackers to ... oval:org.secpod.oval:def:3967 The host is missing an important security update according to Apple advisory, APPLE-SA-2011-11-14-1. The update is required to fix a DNS cache poisoning vulnerability. A flaw is present in the application, as it fails to handle a Trojan horse update. Successful exploitation could allow attackers to ... oval:org.secpod.oval:def:3968 The host is installed with Apple iTunes before 10.5.1 and is prone to a DNS cache poisoning vulnerability. A flaw is present in the application, as it fails to handle a Trojan horse update. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:2938 The host is installed with Apple iTunes before 10.2 or Apple Safari 5.0.4 or Apple Mac OS X 10.6.0 through 10.6.6 and is prone to memory leak vulnerability. A flaw is present in the application which fails to handle a crafted International Color Consortium (ICC) profile in a JPEG image. Successful e ... oval:org.secpod.oval:def:11147 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly verify X.509 certificates. Successful exploitation could allow attackers to spoof HTTPS servers via an arbitrary certificate. oval:org.secpod.oval:def:2921 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to ex ... oval:org.secpod.oval:def:2920 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to ex ... oval:org.secpod.oval:def:2923 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to ex ... oval:org.secpod.oval:def:2922 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to ex ... oval:org.secpod.oval:def:2925 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to ex ... oval:org.secpod.oval:def:2924 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to properly parse HTML elements associated with document namespaces. Successful exploitation could allow man-in-the-middl ... oval:org.secpod.oval:def:2916 The host is installed with Apple iTunes before 10.2 or Apple Safari 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to execute a ... oval:org.secpod.oval:def:2915 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to ex ... oval:org.secpod.oval:def:2918 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to ex ... oval:org.secpod.oval:def:2917 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to ex ... oval:org.secpod.oval:def:2919 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to ex ... oval:org.secpod.oval:def:2930 The host is installed with Apple iTunes before 10.2 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to execute arbitrary code or cause ... oval:org.secpod.oval:def:2932 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to ex ... oval:org.secpod.oval:def:2931 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to ex ... oval:org.secpod.oval:def:2934 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to ex ... oval:org.secpod.oval:def:2933 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to ex ... oval:org.secpod.oval:def:2927 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to ex ... oval:org.secpod.oval:def:2926 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to ex ... oval:org.secpod.oval:def:2929 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to properly implement the .sort function for JavaScript arrays. Successful exploitation could allow man-in-the-middle att ... oval:org.secpod.oval:def:2928 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to ex ... oval:org.secpod.oval:def:4845 The host is installed with Apple iTunes before 8.2 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to handle a long URL component after a colon. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:4846 The host is missing a security update according to Apple advisory, APPLE-SA-2009-06-01-2. The update is required to fix a buffer overflow vulnerability. A flaw is present in the application, which fails to handle a long URL component after a colon. Successful exploitation could allow attackers to ex ... oval:org.secpod.oval:def:4843 The host is installed with Apple iTunes before 8.2 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to handle a long URL component after a colon. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:4844 The host is missing a security update according to Apple advisory, APPLE-SA-2009-06-01-2. The update is required to fix a buffer overflow vulnerability. A flaw is present in the application, which fails to handle a long URL component after a colon. Successful exploitation could allow attackers to ex ... oval:org.secpod.oval:def:4849 The host is missing an important security update according to Apple advisory, APPLE-SA-2009-03-11. The update is required to fix an information disclosure vulnerability. A flaw is present in the application, which fails to properly inform the user about the origin of an authentication request. Succe ... oval:org.secpod.oval:def:4848 The host is installed with Apple iTunes before 8.1 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly inform the user about the origin of an authentication request. Successful exploitation could allow remote podcast servers to trick ... oval:org.secpod.oval:def:2679 The host is installed with Apple iTunes before 10.2 or Apple Safari below 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to properly handle memory. Successful exploitation allows remote attacker to execute arbitrary code. oval:org.secpod.oval:def:2882 The host is installed with Apple iTunes before 10.2 or Apple Safari 5.0.4 or Apple Mac OS X 10.6.0 through 10.6.6 and is prone to buffer overflow vulnerability. A flaw is present in the application which fails to handle a crafted TIFF image with JPEG encoding. Successful exploitation could allow re ... oval:org.secpod.oval:def:2883 The host is installed with Apple iTunes before 10.2 or Apple Safari 5.0.4 or Apple Mac OS X 10.6.0 through 10.6.6 and is prone to buffer overflow vulnerability. A flaw is present in the application which fails to handle a crafted TIFF Internet Fax image file. Successful exploitation could allow remo ... oval:org.secpod.oval:def:2886 The host is installed with Apple iTunes before 10.2 or Apple Safari 5.0.4 and is prone to use-after-free vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow remote attackers to execute arbitrary code ... oval:org.secpod.oval:def:2888 The host is installed with Apple iTunes before 10.2 or Apple Safari 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to execute a ... oval:org.secpod.oval:def:2887 The host is installed with Apple iTunes before 10.2 or or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers t ... oval:org.secpod.oval:def:2889 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to ex ... oval:org.secpod.oval:def:2891 The host is installed with Apple iTunes before 10.2 or Apple Safari 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to execute a ... oval:org.secpod.oval:def:2890 The host is installed with Apple iTunes before 10.2 or Apple Safari 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle DOM manipulations associated with event listeners during processing of range objects. Successful exploitation could al ... oval:org.secpod.oval:def:2893 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to use-after-free vulnerability. A flaw is present in the application which fails to handle vectors related to DOM manipulations during iTunes Store browsing. Successful exploitation could allow man-in-the- ... oval:org.secpod.oval:def:2892 The host is installed with Apple iTunes before 10.2 or Apple Safari 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to execute a ... oval:org.secpod.oval:def:2895 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to ex ... oval:org.secpod.oval:def:2894 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to ex ... oval:org.secpod.oval:def:2897 The host is installed with Apple iTunes before 10.2 or Apple Safari 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to execute a ... oval:org.secpod.oval:def:2896 The host is installed with Apple iTunes before 10.2 or Apple Safari 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to execute a ... oval:org.secpod.oval:def:2899 The host is installed with Apple iTunes before 10.2 or Apple Safari 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to execute a ... oval:org.secpod.oval:def:2898 The host is installed with Apple iTunes before 10.2 or Apple Safari 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow man-in-the-middle attackers to execute a ... oval:org.secpod.oval:def:3971 The host is installed with Apple iTunes before 10.5 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted Advanced Audio Coding (AAC) stream. Successful exploitation could allow attackers to overflow the buffer. oval:org.secpod.oval:def:50332 The host is missing a security update according to Apple advisory, APPLE-SA-2019-1-22-6. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fail to properly handle validation or memory corruption issues. Successful exploitation could allow attacke ... oval:org.secpod.oval:def:2000204 An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. The issue involves the "WebKit" component. It allows remote attackers t ... oval:org.secpod.oval:def:2000464 An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. The issue involves the "WebKit" component. It allows remote attackers t ... oval:org.secpod.oval:def:45942 The host is installed with Apple Safari before 11.1.1 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fails to properly handle memory issues. Successful exploitation may lead to arbitrary code execution. oval:org.secpod.oval:def:2001407 An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. watchOS before 4.3 is affected. The issue involves the fetch API in the "WebKit" component. It allows ... oval:org.secpod.oval:def:46817 The host is installed with Google Chrome before 68.0.3440.75 and is prone to a cross origin information leak vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to disclose sensitive information. oval:org.secpod.oval:def:44801 The host is installed with Apple iCloud before 7.4, Apple iTunes before 12.7.4 or Google Chrome before 68.0.3440.75 and is prone to a cross-origin information disclosure vulnerability. A flaw is present in the application, which fails to properly perform input validation. Successful exploitation cou ... oval:org.secpod.oval:def:44800 The host is installed with Apple iCloud before 7.4 or Apple iTunes before 12.7.4 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly perform input validation. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:2000406 An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. watchOS before 4.3 is affected. The issue involves the "WebKit" compone ... oval:org.secpod.oval:def:44812 The host is installed with Apple Safari before 11.1 and is prone to a memory corrpution vulnerability. A flaw is present in the applications, which fails to properly handle a malicious website. Successful exploitation may lead to arbitrary code execution. oval:org.secpod.oval:def:44814 The host is installed with Apple Safari before 11.1 and is prone to a memory corrpution vulnerability. A flaw is present in the applications, which fails to properly handle a malicious website. Successful exploitation may lead to arbitrary code execution. oval:org.secpod.oval:def:44823 The host is installed with Apple Safari before 11.1 and is prone to a memory corrpution vulnerability. A flaw is present in the applications, which fails to properly handle a malicious website. Successful exploitation may lead to arbitrary code execution. oval:org.secpod.oval:def:44824 The host is installed with Apple Safari before 11.1 and is prone to a memory corrpution vulnerability. A flaw is present in the applications, which fails to properly handle a malicious website. Successful exploitation may lead to arbitrary code execution. oval:org.secpod.oval:def:44825 The host is installed with Apple Safari before 11.1 and is prone to a memory corrpution vulnerability. A flaw is present in the applications, which fails to properly handle a malicious website. Successful exploitation may lead to arbitrary code execution. oval:org.secpod.oval:def:44826 The host is installed with Apple Safari before 11.1 and is prone to a memory corrpution vulnerability. A flaw is present in the applications, which fails to properly handle a malicious website. Successful exploitation may lead to arbitrary code execution. oval:org.secpod.oval:def:2001604 An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari before 11.1.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. watchOS before 4.3.1 is affected. The issue involves the "WebKit" com ... oval:org.secpod.oval:def:44821 The host is installed with Apple Safari before 11.1 and is prone to a memory corrpution vulnerability. A flaw is present in the applications, which fails to properly handle a malicious website. Successful exploitation may lead to arbitrary code execution. oval:org.secpod.oval:def:44829 The host is installed with Apple Safari before 11.1 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fails to properly handle a maliciously crafted web content. Successful exploitation may lead to a denial of service. oval:org.secpod.oval:def:44830 The host is installed with Apple Safari before 11.1 or Google Chrome before 68.0.3440.75 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fails to properly handle a maliciously crafted web content. Successful exploitation may lead to a denial of service ... oval:org.secpod.oval:def:44831 The host is missing a security update according to Apple advisory, APPLE-SA-2018-3-29-6. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly perform input validation. Successful exploitation could allow attackers to disclose sensi ... oval:org.secpod.oval:def:2000518 An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. watchOS before 4.3 is affected. The issue involves the "WebKit" compone ... oval:org.secpod.oval:def:114649 WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKit2 based WebKitGTK+ for GTK+ 3. oval:org.secpod.oval:def:2000168 An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. watchOS before 4.3 is affected. The issue involves the "WebKit" compone ... oval:org.secpod.oval:def:704068 webkit2gtk: Web content engine library for GTK+ A security issue was fixed in WebKitGTK+. oval:org.secpod.oval:def:2000156 An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. watchOS before 4.3 is affected. The issue involves the "WebKit" compone ... oval:org.secpod.oval:def:704062 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK+. oval:org.secpod.oval:def:114541 WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKitGTK+ for GTK+ 3. oval:org.secpod.oval:def:2000389 An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. watchOS before 4.3 is affected. The issue involves the "WebKit" compone ... oval:org.secpod.oval:def:114411 WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKit2 based WebKitGTK+ for GTK+ 3. oval:org.secpod.oval:def:114728 WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKitGTK+ for GTK+ 3. oval:org.secpod.oval:def:2001460 An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. watchOS before 4.3 is affected. The issue involves the "WebKit" compone ... oval:org.secpod.oval:def:704127 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK+. oval:org.secpod.oval:def:46785 The host is installed with Google Chrome before 68.0.3440.75 and is prone to a cross origin information leak vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to disclose sensitive information. oval:org.secpod.oval:def:46780 The host is installed with Google Chrome before 68.0.3440.75 and is prone to a cross origin information leak vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:46823 The host is installed with Google Chrome before 68.0.3440.75 and is prone to a cross origin information leak vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:51060 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK+. oval:org.secpod.oval:def:52040 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK+. oval:org.secpod.oval:def:44784 The host is installed with Apple iCloud before 7.4 or Apple iTunes before 12.7.4 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:44786 The host is installed with Apple iCloud before 7.4 or Apple iTunes before 12.7.4 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:44793 The host is installed with Apple iCloud before 7.4 or Apple iTunes before 12.7.4 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:44795 The host is installed with Apple iCloud before 7.4 or Apple iTunes before 12.7.4 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:44796 The host is installed with Apple iCloud before 7.4 or Apple iTunes before 12.7.4 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:44797 The host is installed with Apple iCloud before 7.4 or Apple iTunes before 12.7.4 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:44798 The host is installed with Apple iCloud before 7.4 or Apple iTunes before 12.7.4 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:45890 The host is installed with Apple iCloud before 7.5 or Apple iTunes before 12.7.5 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to execute a ... oval:org.secpod.oval:def:45934 The host is installed with Apple Safari before 11.1.1 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fails to properly handle maliciously crafted web content. Successful exploitation may lead to arbitrary code execution. oval:org.secpod.oval:def:2000536 In Safari before 11.1.2, iTunes before 12.8 for Windows, iOS before 11.4.1, tvOS before 11.4.1, iCloud for Windows before 7.6, multiple memory corruption issues were addressed with improved memory handling. oval:org.secpod.oval:def:704284 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK+. oval:org.secpod.oval:def:46294 The host is installed with Apple iCloud before 7.6 or Apple iTunes before 12.8 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle crafted content. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:46290 The host is installed with Apple iCloud before 7.6 or Apple iTunes before 12.8 and is prone to a cross-origin data bypass vulnerability. A flaw is present in the application, which fails to properly perform audio taint tracking. Successful exploitation could allow attackers to exfiltrate audio data ... oval:org.secpod.oval:def:46304 The host is missing a security update according to Apple advisory, APPLE-SA-2018-7-9-5. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle a malicious website. Successful exploitation could allow attackers to spoof address bars or ... oval:org.secpod.oval:def:46307 The host is installed with Apple Safari before 11.1.2 and is prone to an unspecified vulnerability. A flaw is present in the application, which fails to properly handle a malicious website. Successful exploitation allows attackers to exfiltrate cross-origin the sound fetched through audio elements. oval:org.secpod.oval:def:46311 The host is installed with Apple Safari before 11.1.2 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation allows attackers to lead to arbitrary code execution. oval:org.secpod.oval:def:46303 The host is missing a security update according to Apple advisory, APPLE-SA-2018-7-9-7. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary co ... oval:org.secpod.oval:def:46302 The host is missing a security update according to Apple advisory, APPLE-SA-2018-7-9-6. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary co ... oval:org.secpod.oval:def:45886 The host is installed with Apple iCloud before 7.5 or Apple iTunes before 12.7.5 and is prone to a type confusion vulnerability. A flaw is present in the application, which fails to properly handle memory. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:703931 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK+. oval:org.secpod.oval:def:44922 The host is installed with Apple iCloud before 7.2 or Apple iTunes before 12.7.2 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle memory. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:44923 The host is installed with Apple iCloud before 7.2 or Apple iTunes before 12.7.2 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle memory. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:113665 WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKitGTK+ for GTK+ 3. oval:org.secpod.oval:def:42619 The host is missing a security update according to Apple advisory, APPLE-SA-2017-10-31-6. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to ... oval:org.secpod.oval:def:113634 WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKitGTK+ for GTK+ 3. oval:org.secpod.oval:def:113991 WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKitGTK+ for GTK+ 3. oval:org.secpod.oval:def:51986 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK+. oval:org.secpod.oval:def:113825 WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKitGTK+ for GTK+ 3. oval:org.secpod.oval:def:113612 WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKitGTK+ for GTK+ 3. oval:org.secpod.oval:def:113854 WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKitGTK+ for GTK+ 3. oval:org.secpod.oval:def:113936 WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKitGTK+ for GTK+ 3. oval:org.secpod.oval:def:703886 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK+. oval:org.secpod.oval:def:43212 The host is missing a security update according to Apple advisory, APPLE-SA-2017-12-13-3. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle maliciously crafted web content or client certificates. Successful exploitation c ... oval:org.secpod.oval:def:43213 The host is missing a security update according to apple advisory, APPLE-SA-2017-12-13-4. The update is required to fix multiple memory corruption vulnerabilities.The flaws are present in the application, which fails to properly handle maliciously crafted web content or client certificates. Successf ... oval:org.secpod.oval:def:703972 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK+. oval:org.secpod.oval:def:43587 The host is missing a security update according to apple advisory, APPLE-SA-2018-1-23-6. The update is required to fix multiple memory corruption vulnerabilities.The flaws are present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could al ... oval:org.secpod.oval:def:1800708 CVE-2017-5753 Versions affected: WebKitGTK+ before 2.18.5.Impact: Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker via a side-channel analysis. This variant of the Spectre vulnerability triggers the spe ... oval:org.secpod.oval:def:2936 The host is missing an APPLE-SA-2011-03-02-1 iTunes 10.2 update according to Apple Product Security. The update is required to fix denial of service vulnerability in Apple iTunes. The flaws are present in WebKit, ImageIO and libxml which fails to handle vectors related to iTunes Store browsing, craf ... oval:org.secpod.oval:def:2935 The host is missing an APPLE-SA-2011-03-02-1 iTunes 10.2 update according to Apple Product Security. The update is required to fix denial of service vulnerability in Apple iTunes. The flaws are present in WebKit, ImageIO and libxml which fails to handle vectors related to iTunes Store browsing, craf ... oval:org.secpod.oval:def:46789 The host is missing a high severity security update according to Google advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:46752 The host is missing a high severity security update according to Google advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle crafted data. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:46827 The host is missing a high severity security update according to Google advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:46821 The host is missing a high severity security update according to Google advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:115120 Chromium is an open-source web browser, powered by WebKit . oval:org.secpod.oval:def:53380 Several vulnerabilities have been discovered in the chromium web browser. CVE-2018-4117 AhsanEjaz discovered an information leak. Rob Wu discovered a way to escalate privileges using extensions. CVE-2018-6150 Rob Wu discovered an information disclosure issue . CVE-2018-6151 Rob Wu discovered an issu ... oval:org.secpod.oval:def:115022 Chromium is an open-source web browser, powered by WebKit . |
