CVE

Id
88677  
CVE No.
CVE-2016-1858  
Status
Candidate  
Description
WebKit, as used in Apple iOS before 9.3.2, Safari before 9.1.1, and tvOS before 9.2.1, improperly tracks taint attributes, which allows remote attackers to obtain sensitive information via a crafted web site.  
Phase
Assigned (20160113)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
770655 88677 CVE-2016-1858 BUGTRAQ:20160530 WebKitGTK+ Security Advisory WSA-2016-0004  View
770656 88677 CVE-2016-1858 URL:http://www.securityfocus.com/archive/1/archive/1/538522/100/0/threaded  View
770657 88677 CVE-2016-1858 MISC:http://packetstormsecurity.com/files/137229/WebKitGTK-Code-Execution-Denial-Of-Service-Memory-Corruption.html  View
770658 88677 CVE-2016-1858 CONFIRM:https://support.apple.com/HT206564  View
770659 88677 CVE-2016-1858 CONFIRM:https://support.apple.com/HT206565  View
770660 88677 CVE-2016-1858 CONFIRM:https://support.apple.com/HT206568  View
770661 88677 CVE-2016-1858 APPLE:APPLE-SA-2016-05-16-1  View
770662 88677 CVE-2016-1858 URL:http://lists.apple.com/archives/security-announce/2016/May/msg00001.html  View
770663 88677 CVE-2016-1858 APPLE:APPLE-SA-2016-05-16-2  View
770664 88677 CVE-2016-1858 URL:http://lists.apple.com/archives/security-announce/2016/May/msg00002.html  View
770665 88677 CVE-2016-1858 APPLE:APPLE-SA-2016-05-16-5  View
770666 88677 CVE-2016-1858 URL:http://lists.apple.com/archives/security-announce/2016/May/msg00005.html  View
770667 88677 CVE-2016-1858 SECTRACK:1035888  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
1308 JVNDB-2016-002081 Apache Jetspeed の User Manager サービスにおけるユーザを追加される脆弱性 Apache Jetspeed の User Manager サービスは、Jetspeed Security を使用するアクセスを適切に制限しないため、ユーザを (1) 追加、(2) 編集、または (3) 削除される脆弱性が存在します。 CVE-2016-2171 88677 6.4 7.5 http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-002081.html  View