Apple iOS Memory Corruption URLs Spoofing Vulnerability

Authors:Google Project Zero   Risk:High 

Authors:Zhiyang Zeng,faker   Risk:High

CVE:CVE-2018-10260           0day:Memory Corruption

CVE:CVE-2018-4187            0day:URLs Spoofing

0day -id:0DAY-176101          Date:2018-04-26

CVE-2018-4206

Available for: macOS High Sierra 10.13.4

Impact: An application may be able to gain elevated privileges

Description: A memory corruption issue was addressed with improved error handling.

CVE-2018-4206: Ian Beer of Google Project Zero

CVE-2018-4187

Available for: macOS High Sierra 10.13.4

Impact: Processing a maliciously crafted text message may lead to UI spoofing

Description: A spoofing issue existed in the handling of URLs. This issue was addressed with improved input validation.

CVE-2018-4187: Zhiyang Zeng (@Wester) of Tencent Security Platform Department, Roman Mueller (@faker_)

Vulnerable

Apple iPod Touch 0
Apple iPhone 0
Apple iPad Air 0
Apple iOS 5 0
Apple iOS 4 0
Apple iOS 3 0
Apple iOS 10.2.1 
Apple iOS 10.0.1 
Apple iOS 9.3.4 
Apple iOS 9.3.3 
Apple iOS 9.3.2 
Apple iOS 9.3.1 
Apple iOS 9.2.1 
Apple iOS 9.0.2 
Apple iOS 9.0.1 
Apple iOS 8.4.1 
Apple iOS 7.2 
Apple iOS 7.0.6 
Apple iOS 7.0.5 
Apple iOS 7.0.3 
Apple iOS 7.0.2 
Apple iOS 7.0.1 
Apple iOS 6.3.1 
Apple iOS 6.1.6 
Apple iOS 6.1.4 
Apple iOS 6.1.3 
Apple iOS 4.2.1 
Apple iOS 4.0.2 
Apple iOS 4.0.1 
Apple iOS 3.2.2 
Apple iOS 3.2.1 
Apple iOS 9.3.5
Apple iOS 9.3
Apple iOS 9.2
Apple iOS 9.1
Apple iOS 9
Apple iOS 8.4
Apple iOS 8.3
Apple iOS 8.2
Apple iOS 8.1.3
Apple iOS 8.1.2
Apple iOS 8.1.1
Apple iOS 8.1
Apple iOS 8
Apple iOS 7.1.2
Apple iOS 7.1.1
Apple iOS 7.1
Apple iOS 7.0.4
Apple iOS 7
Apple iOS 6.1
Apple iOS 6.0.2
Apple iOS 6.0.1
Apple iOS 6
Apple iOS 5.1.1
Apple iOS 5.1
Apple iOS 5.0.1
Apple iOS 5
Apple iOS 4.3.5
Apple iOS 4.3.4
Apple iOS 4.3.3
Apple iOS 4.3.2
Apple iOS 4.3.1
Apple iOS 4.3
Apple iOS 4.2.9
Apple iOS 4.2.8
Apple iOS 4.2.7
Apple iOS 4.2.6
Apple iOS 4.2.5
Apple iOS 4.2.10
Apple iOS 4.2
Apple iOS 4.1
Apple iOS 4
Apple iOS 3.2
Apple iOS 3.1
Apple iOS 3.0
Apple iOS 2.1
Apple iOS 2.0
Apple iOS 11.3
Apple iOS 11.2.6
Apple iOS 11.2.5
Apple iOS 11.2.2
Apple iOS 11.2.1
Apple iOS 11.2
Apple iOS 11.1
Apple iOS 10.3.3
Apple iOS 10.3.2
Apple iOS 10.3.1
Apple iOS 10.3
Apple iOS 10.2
Apple iOS 10.1
Apple iOS 10

Not Vulnerable

Apple iOS 11.3.1

Leave a Reply