CVE-2017-2364

Related Files

Ubuntu Security Notice USN-3257-1

Posted Apr 11, 2017

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3257-1 - A large number of security issues were discovered in the WebKitGTK+ Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution.

tags | advisory, remote, web, denial of service, arbitrary, javascript, code execution, xss

systems | linux, ubuntu

advisories | CVE-2016-9642, CVE-2016-9643, CVE-2017-2364, CVE-2017-2367, CVE-2017-2376, CVE-2017-2377, CVE-2017-2386, CVE-2017-2392, CVE-2017-2394, CVE-2017-2395, CVE-2017-2396, CVE-2017-2405, CVE-2017-2415, CVE-2017-2419, CVE-2017-2433, CVE-2017-2442, CVE-2017-2445, CVE-2017-2446, CVE-2017-2447, CVE-2017-2454, CVE-2017-2455, CVE-2017-2457, CVE-2017-2459, CVE-2017-2460, CVE-2017-2464, CVE-2017-2465, CVE-2017-2466, CVE-2017-2468

SHA-256 | cf093dbe9d28c2da54857b225f129940736f62bb4316b79000fc51f6f1eef93f

Download | Favorite | View

Apple WebKit Frame::setDocument UXSS

Posted Apr 9, 2017

Authored by Google Security Research, lokihardt

Apple WebKit suffered from a cross site scripting vulnerability in Frame::setDocument (1).

tags | exploit, xss

systems | apple

advisories | CVE-2017-2364

SHA-256 | 2af1c036a79061791351da77a204e0a4c5f2c9d011719b9e90d25e802e1daced

Download | Favorite | View

Apple Security Advisory 2017-03-27-4

Posted Mar 27, 2017

Authored by Apple | Site apple.com

Apple Security Advisory 2017-03-27-4 - iOS 10.3 is now available and addresses code execution, information disclosure, denial of service, and various other vulnerabilities.

tags | advisory, denial of service, vulnerability, code execution, info disclosure

systems | cisco, apple, ios

advisories | CVE-2016-3619, CVE-2016-9642, CVE-2016-9643, CVE-2017-2364, CVE-2017-2367, CVE-2017-2376, CVE-2017-2377, CVE-2017-2378, CVE-2017-2379, CVE-2017-2380, CVE-2017-2384, CVE-2017-2386, CVE-2017-2389, CVE-2017-2390, CVE-2017-2393, CVE-2017-2394, CVE-2017-2395, CVE-2017-2396, CVE-2017-2397, CVE-2017-2398, CVE-2017-2399, CVE-2017-2400, CVE-2017-2401, CVE-2017-2404, CVE-2017-2405, CVE-2017-2406, CVE-2017-2407, CVE-2017-2412

SHA-256 | 22e0875f79f9c63aedffc618f68fec412607d64473f27fd6f5dbacb83463532e

Download | Favorite | View

Apple Security Advisory 2017-03-27-2

Posted Mar 27, 2017

Authored by Apple

Apple Security Advisory 2017-03-27-2 - Safari 10.1 is now available and addresses multiple vulnerabilities.

tags | advisory, vulnerability

systems | apple

advisories | CVE-2016-9642, CVE-2016-9643, CVE-2017-2364, CVE-2017-2367, CVE-2017-2376, CVE-2017-2377, CVE-2017-2378, CVE-2017-2385, CVE-2017-2386, CVE-2017-2389, CVE-2017-2394, CVE-2017-2395, CVE-2017-2396, CVE-2017-2405, CVE-2017-2415, CVE-2017-2419, CVE-2017-2424, CVE-2017-2433, CVE-2017-2442, CVE-2017-2444, CVE-2017-2445, CVE-2017-2446, CVE-2017-2447, CVE-2017-2453, CVE-2017-2454, CVE-2017-2455, CVE-2017-2459, CVE-2017-2460

SHA-256 | d26e9aff6bf7e7434e91a8b6c96617fdf3c0d54254c77601ccf9e657673e1334

Download | Favorite | View

Ubuntu Security Notice USN-3200-1

Posted Feb 17, 2017

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3200-1 - A large number of security issues were discovered in the WebKitGTK+ Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution.

tags | advisory, remote, web, denial of service, arbitrary, javascript, code execution, xss

systems | linux, ubuntu

advisories | CVE-2017-2350, CVE-2017-2354, CVE-2017-2355, CVE-2017-2356, CVE-2017-2362, CVE-2017-2363, CVE-2017-2364, CVE-2017-2365, CVE-2017-2366, CVE-2017-2369, CVE-2017-2371, CVE-2017-2373

SHA-256 | a61c6b895c9fb308b79806c33c686eac64252cfe20244790ee0c7c447b60ff74

Download | Favorite | View

WebKitGTK+ Memory Corruption / Data Exfiltration

Posted Feb 12, 2017

Authored by WebKitGTK+ Team

WebKitGTK+ has been updated to address a large quantity of vulnerabilities ranging from memory corruption to arbitrary code execution.

tags | advisory, arbitrary, vulnerability, code execution

advisories | CVE-2017-2350, CVE-2017-2354, CVE-2017-2355, CVE-2017-2356, CVE-2017-2362, CVE-2017-2363, CVE-2017-2364, CVE-2017-2365, CVE-2017-2366, CVE-2017-2369, CVE-2017-2371, CVE-2017-2373

SHA-256 | df60b93cf570a4f73123a64b2850f9720b93f0c2cd77cfefa61c6ae8b3005102

Download | Favorite | View

Apple Security Advisory 2017-01-23-5

Posted Jan 24, 2017

Authored by Apple | Site apple.com

Apple Security Advisory 2017-01-23-5 - Safari 10.0.3 is now available and addresses spoofing, data exfiltration, and various other security vulnerabilities.

tags | advisory, spoof, vulnerability

systems | apple

advisories | CVE-2017-2350, CVE-2017-2354, CVE-2017-2355, CVE-2017-2356, CVE-2017-2359, CVE-2017-2362, CVE-2017-2363, CVE-2017-2364, CVE-2017-2365, CVE-2017-2366, CVE-2017-2369, CVE-2017-2373

SHA-256 | 9380ba037cb7a4a08a6957da5be6a90a85229a9d5a4279cc9e45ce3958bfe552

Download | Favorite | View

Apple Security Advisory 2017-01-23-1

Posted Jan 24, 2017

Authored by Apple | Site apple.com

Apple Security Advisory 2017-01-23-1 - iOS 10.2.1 is now available and addresses logic issues, code execution, and multiple other security vulnerabilities.

tags | advisory, vulnerability, code execution

systems | cisco, apple, ios

advisories | CVE-2016-8687, CVE-2017-2350, CVE-2017-2351, CVE-2017-2352, CVE-2017-2354, CVE-2017-2355, CVE-2017-2356, CVE-2017-2360, CVE-2017-2362, CVE-2017-2363, CVE-2017-2364, CVE-2017-2365, CVE-2017-2366, CVE-2017-2368, CVE-2017-2369, CVE-2017-2370, CVE-2017-2371, CVE-2017-2373

SHA-256 | 526fa3d6cc515f743f6765a22e9a42436711edaa61feea64ad14319fabe71274

Download | Favorite | View