Vulnerability Details CVE-2011-2831
WebKit, as used in Apple iTunes before 10.5, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsing, a different vulnerability than other CVEs listed in APPLE-SA-2011-10-11-1.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.012
EPSS Ranking 77.8%
CVSS Severity
CVSS v2 Score 7.6
References
- http://lists.apple.com/archives/Security-announce/2011//Oct/msg00000.html
- http://lists.apple.com/archives/Security-announce/2011//Oct/msg00001.html
- http://lists.apple.com/archives/Security-announce/2011//Oct/msg00004.html
- http://support.apple.com/kb/HT4981
- http://support.apple.com/kb/HT4999
- http://support.apple.com/kb/HT5000
- http://www.securityfocus.com/bid/50066
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17317
- http://lists.apple.com/archives/Security-announce/2011//Oct/msg00000.html
- http://lists.apple.com/archives/Security-announce/2011//Oct/msg00001.html
- http://lists.apple.com/archives/Security-announce/2011//Oct/msg00004.html
- http://support.apple.com/kb/HT4981
- http://support.apple.com/kb/HT4999
- http://support.apple.com/kb/HT5000
- http://www.securityfocus.com/bid/50066
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17317
Products affected by CVE-2011-2831
-
cpe:2.3:a:apple:itunes:-
-
cpe:2.3:a:apple:itunes:10.0
-
cpe:2.3:a:apple:itunes:10.0.1
-
cpe:2.3:a:apple:itunes:10.1
-
cpe:2.3:a:apple:itunes:10.1.1
-
cpe:2.3:a:apple:itunes:10.1.1.4
-
cpe:2.3:a:apple:itunes:10.1.2
-
cpe:2.3:a:apple:itunes:10.2
-
cpe:2.3:a:apple:itunes:10.2.2.12
-
cpe:2.3:a:apple:itunes:10.3
-
cpe:2.3:a:apple:itunes:10.3.1
-
cpe:2.3:a:apple:itunes:10.4
-
cpe:2.3:a:apple:itunes:10.4.0.80
-
cpe:2.3:a:apple:itunes:10.4.1
-
cpe:2.3:a:apple:itunes:4.0.0
-
cpe:2.3:a:apple:itunes:4.0.1
-
cpe:2.3:a:apple:itunes:4.1.0
-
cpe:2.3:a:apple:itunes:4.2.0
-
cpe:2.3:a:apple:itunes:4.5
-
cpe:2.3:a:apple:itunes:4.5.0
-
cpe:2.3:a:apple:itunes:4.6
-
cpe:2.3:a:apple:itunes:4.6.0
-
cpe:2.3:a:apple:itunes:4.7
-
cpe:2.3:a:apple:itunes:4.7.0
-
cpe:2.3:a:apple:itunes:4.7.1
-
cpe:2.3:a:apple:itunes:4.7.2
-
cpe:2.3:a:apple:itunes:4.8.0
-
cpe:2.3:a:apple:itunes:4.9.0
-
cpe:2.3:a:apple:itunes:5.0
-
cpe:2.3:a:apple:itunes:5.0.0
-
cpe:2.3:a:apple:itunes:5.0.1
-
cpe:2.3:a:apple:itunes:6.0.0
-
cpe:2.3:a:apple:itunes:6.0.1
-
cpe:2.3:a:apple:itunes:6.0.2
-
cpe:2.3:a:apple:itunes:6.0.3
-
cpe:2.3:a:apple:itunes:6.0.4
-
cpe:2.3:a:apple:itunes:6.0.5
-
cpe:2.3:a:apple:itunes:7.0.0
-
cpe:2.3:a:apple:itunes:7.0.1
-
cpe:2.3:a:apple:itunes:7.0.2
-
cpe:2.3:a:apple:itunes:7.1.0
-
cpe:2.3:a:apple:itunes:7.1.1
-
cpe:2.3:a:apple:itunes:7.2.0
-
cpe:2.3:a:apple:itunes:7.3.0
-
cpe:2.3:a:apple:itunes:7.3.1
-
cpe:2.3:a:apple:itunes:7.3.2
-
cpe:2.3:a:apple:itunes:7.4
-
cpe:2.3:a:apple:itunes:7.4.0
-
cpe:2.3:a:apple:itunes:7.4.1
-
cpe:2.3:a:apple:itunes:7.4.2
-
cpe:2.3:a:apple:itunes:7.4.3
-
cpe:2.3:a:apple:itunes:7.5
-
cpe:2.3:a:apple:itunes:7.5.0
-
cpe:2.3:a:apple:itunes:7.6
-
cpe:2.3:a:apple:itunes:7.6.0
-
cpe:2.3:a:apple:itunes:7.6.1
-
cpe:2.3:a:apple:itunes:7.6.2
-
cpe:2.3:a:apple:itunes:7.7
-
cpe:2.3:a:apple:itunes:7.7.0
-
cpe:2.3:a:apple:itunes:7.7.1
-
cpe:2.3:a:apple:itunes:8.0.0
-
cpe:2.3:a:apple:itunes:8.0.1
-
cpe:2.3:a:apple:itunes:8.1
-
cpe:2.3:a:apple:itunes:9.0.0
-
cpe:2.3:a:apple:itunes:9.0.1
-
cpe:2.3:a:apple:itunes:9.0.2
-
cpe:2.3:a:apple:itunes:9.0.3
-
cpe:2.3:a:apple:itunes:9.1
-
cpe:2.3:a:apple:itunes:9.1.1
-
cpe:2.3:a:apple:itunes:9.2
-
cpe:2.3:a:apple:itunes:9.2.1
-
cpe:2.3:a:apple:webkit:-
-
cpe:2.3:a:apple:webkit:103
-
cpe:2.3:a:apple:webkit:106.2
-
cpe:2.3:a:apple:webkit:124
-
cpe:2.3:a:apple:webkit:125.2
-
cpe:2.3:a:apple:webkit:125.4
-
cpe:2.3:a:apple:webkit:125.5.5
-
cpe:2.3:a:apple:webkit:125.5.7
-
cpe:2.3:a:apple:webkit:254245
-
cpe:2.3:a:apple:webkit:254246
-
cpe:2.3:a:apple:webkit:254248
-
cpe:2.3:a:apple:webkit:254249
-
cpe:2.3:a:apple:webkit:254250
-
cpe:2.3:a:apple:webkit:254251
-
cpe:2.3:a:apple:webkit:254252
-
cpe:2.3:a:apple:webkit:254253
-
cpe:2.3:a:apple:webkit:254254
-
cpe:2.3:a:apple:webkit:254255
-
cpe:2.3:a:apple:webkit:254256
-
cpe:2.3:a:apple:webkit:254257
-
cpe:2.3:a:apple:webkit:254259
-
cpe:2.3:a:apple:webkit:254260
-
cpe:2.3:a:apple:webkit:254262
-
cpe:2.3:a:apple:webkit:254264
-
cpe:2.3:a:apple:webkit:254265
-
cpe:2.3:a:apple:webkit:254266
-
cpe:2.3:a:apple:webkit:254268
-
cpe:2.3:a:apple:webkit:254269
-
cpe:2.3:a:apple:webkit:254271
-
cpe:2.3:a:apple:webkit:254281
-
cpe:2.3:a:apple:webkit:254285
-
cpe:2.3:a:apple:webkit:254286
-
cpe:2.3:a:apple:webkit:254287
-
cpe:2.3:a:apple:webkit:254288
-
cpe:2.3:a:apple:webkit:254290
-
cpe:2.3:a:apple:webkit:254291
-
cpe:2.3:a:apple:webkit:254293
-
cpe:2.3:a:apple:webkit:254294
-
cpe:2.3:a:apple:webkit:254946
-
cpe:2.3:a:apple:webkit:254947
-
cpe:2.3:a:apple:webkit:254948
-
cpe:2.3:a:apple:webkit:254949
-
cpe:2.3:a:apple:webkit:254950
-
cpe:2.3:a:apple:webkit:254951
-
cpe:2.3:a:apple:webkit:254952
-
cpe:2.3:a:apple:webkit:254953
-
cpe:2.3:a:apple:webkit:254954
-
cpe:2.3:a:apple:webkit:254955
-
cpe:2.3:a:apple:webkit:254956
-
cpe:2.3:a:apple:webkit:254957
-
cpe:2.3:a:apple:webkit:254958
-
cpe:2.3:a:apple:webkit:254959
-
cpe:2.3:a:apple:webkit:254960
-
cpe:2.3:a:apple:webkit:254961
-
cpe:2.3:a:apple:webkit:254962
-
cpe:2.3:a:apple:webkit:254963
-
cpe:2.3:a:apple:webkit:254964
-
cpe:2.3:a:apple:webkit:254965
-
cpe:2.3:a:apple:webkit:254969
-
cpe:2.3:a:apple:webkit:254970
-
cpe:2.3:a:apple:webkit:254971
-
cpe:2.3:a:apple:webkit:254975
-
cpe:2.3:a:apple:webkit:254976
-
cpe:2.3:a:apple:webkit:254977
-
cpe:2.3:a:apple:webkit:254978
-
cpe:2.3:a:apple:webkit:254979
-
cpe:2.3:a:apple:webkit:254981
-
cpe:2.3:a:apple:webkit:254982
-
cpe:2.3:a:apple:webkit:312.1
-
cpe:2.3:a:apple:webkit:312.5
-
cpe:2.3:a:apple:webkit:312.5.2
-
cpe:2.3:a:apple:webkit:312.8
-
cpe:2.3:a:apple:webkit:312.8.1
-
cpe:2.3:a:apple:webkit:412
-
cpe:2.3:a:apple:webkit:412.6
-
cpe:2.3:a:apple:webkit:412.7
-
cpe:2.3:a:apple:webkit:413
-
cpe:2.3:a:apple:webkit:416.11
-
cpe:2.3:a:apple:webkit:416.12
-
cpe:2.3:a:apple:webkit:417.10
-
cpe:2.3:a:apple:webkit:417.9
-
cpe:2.3:a:apple:webkit:418
-
cpe:2.3:a:apple:webkit:418.8
-
cpe:2.3:a:apple:webkit:418.9
-
cpe:2.3:a:apple:webkit:418.9.1
-
cpe:2.3:a:apple:webkit:419
-
cpe:2.3:a:apple:webkit:419.2
-
cpe:2.3:a:apple:webkit:419.2.1
-
cpe:2.3:a:apple:webkit:420
-
cpe:2.3:a:apple:webkit:51
-
cpe:2.3:a:apple:webkit:512.11
-
cpe:2.3:a:apple:webkit:512.11.3
-
cpe:2.3:a:apple:webkit:522
-
cpe:2.3:a:apple:webkit:522.10.1
-
cpe:2.3:a:apple:webkit:522.12.1
-
cpe:2.3:a:apple:webkit:522.13.1
-
cpe:2.3:a:apple:webkit:522.8.2
-
cpe:2.3:a:apple:webkit:53524
-
cpe:2.3:a:apple:webkit:85
-
cpe:2.3:a:apple:webkit:85.7
-
cpe:2.3:a:apple:webkit:85.8.2
-
cpe:2.3:a:apple:webkit:85.8.5