CVE-2017-2364

CVE-2017-2364

Name

CVE-2017-2364

Description

An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari before 10.0.3 is affected. The issue involves the "WebKit" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site.

NVD Severity

unknown

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
Third Party Advisory	http://www.securityfocus.com/bid/95725
product-security@apple.com	http://www.securitytracker.com/id/1037668
product-security@apple.com	http://www.securitytracker.com/id/1038137
product-security@apple.com	https://security.gentoo.org/glsa/201706-15
Vendor Advisory	https://support.apple.com/HT207482
Vendor Advisory	https://support.apple.com/HT207484
product-security@apple.com	https://www.exploit-db.com/exploits/41799/

Type

URI

Third Party Advisory

http://www.securityfocus.com/bid/95725

product-security@apple.com

http://www.securitytracker.com/id/1037668

product-security@apple.com

http://www.securitytracker.com/id/1038137

product-security@apple.com

https://security.gentoo.org/glsa/201706-15

Vendor Advisory

https://support.apple.com/HT207482