Details of VAR-201103-0239

ID

VAR-201103-0239

CVE

CVE-2011-0138

TITLE

plural Apple Product WebKit Vulnerable to arbitrary code execution

Trust: 0.8

sources: JVNDB: JVNDB-2011-001328

DESCRIPTION

WebKit, as used in Apple iTunes before 10.2 on Windows, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsing, a different vulnerability than other CVEs listed in APPLE-SA-2011-03-02-1. WebKit is prone to an unspecified memory-corruption vulnerability. An attacker can exploit this issue by enticing an unsuspecting user into visiting a malicious webpage with a vulnerable application. Very few technical details are currently available. We will update this BID when more information emerges. Successful exploits will allow attackers to execute arbitrary code in the context of the affected browser or cause denial-of-service conditions; other attacks may also be possible. NOTE: This issue was previously discussed in BID 46654 (WebKit Multiple Memory Corruption Vulnerabilities) but has been given its own record to better document it. WebKit is a set of open source web browser engines jointly developed by companies such as KDE, Apple (Apple), and Google (Google), and is currently used by browsers such as Apple Safari and Google Chrome. A vulnerability exists in WebKit used in versions prior to 10.2 of Apple iTunes on Windows-based platforms

Trust: 2.07

sources: NVD: CVE-2011-0138 // JVNDB: JVNDB-2011-001328 // BID: 46713 // VULHUB: VHN-48083 // VULMON: CVE-2011-0138

AFFECTED PRODUCTS

vendor:	apple	model:	itunes	scope:	eq	version:	4.6.0	Trust: 1.6
vendor:	apple	model:	itunes	scope:	eq	version:	4.1.0	Trust: 1.6
vendor:	apple	model:	itunes	scope:	eq	version:	4.7.0	Trust: 1.6
vendor:	apple	model:	itunes	scope:	eq	version:	4.0.1	Trust: 1.6
vendor:	apple	model:	itunes	scope:	eq	version:	4.6	Trust: 1.6
vendor:	apple	model:	itunes	scope:	eq	version:	4.0.0	Trust: 1.6
vendor:	apple	model:	itunes	scope:	eq	version:	4.7	Trust: 1.6
vendor:	apple	model:	itunes	scope:	eq	version:	4.5	Trust: 1.6
vendor:	apple	model:	itunes	scope:	eq	version:	4.5.0	Trust: 1.6
vendor:	apple	model:	itunes	scope:	eq	version:	4.2.0	Trust: 1.6
vendor:	apple	model:	itunes	scope:	eq	version:	9.2.1	Trust: 1.3
vendor:	apple	model:	itunes	scope:	eq	version:	9.0.2	Trust: 1.3
vendor:	apple	model:	itunes	scope:	eq	version:	9.0.1	Trust: 1.3
vendor:	apple	model:	itunes	scope:	eq	version:	9.2	Trust: 1.3
vendor:	apple	model:	itunes	scope:	eq	version:	10.1	Trust: 1.3
vendor:	apple	model:	itunes	scope:	eq	version:	10	Trust: 1.1
vendor:	apple	model:	itunes	scope:	eq	version:	7.6	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	5.0.0	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	8.2	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	8.0.2	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	7.7.1	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	10.0	Trust: 1.0
vendor:	apple	model:	webkit	scope:	eq	version:	*	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	7.5.0	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	7.2.0	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	7.3.1	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	4.8.0	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	6.0.0	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	7.1.0	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	7.4	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	7.4.0	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	7.7.0	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	6.0.4	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	5.0.1	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	7.3.0	Trust: 1.0
vendor:	apple	model:	itunes	scope:	lte	version:	10.1.2	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	7.1.1	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	8.1.1	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	7.0.0	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	6.0.3	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	6.0.4.2	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	7.0.2	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	7.7	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	7.0.1	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	6.0.1	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	4.7.1	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	5.0	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	7.6.1	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	4.7.2	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	7.6.2	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	8.2.1	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	8.1	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	7.4.1	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	9.0.0	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	10.1.1	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	7.3.2	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	4.9.0	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	7.4.3	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	7.4.2	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	6.0.5	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	8.0.1	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	10.0.1	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	7.6.0	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	8.0.0	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	9.0.3	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	7.5	Trust: 1.0
vendor:	apple	model:	itunes	scope:	eq	version:	6.0.2	Trust: 1.0
vendor:	apple	model:	mac os x	scope:	eq	version:	v10.5.8	Trust: 0.8
vendor:	apple	model:	mac os x server	scope:	eq	version:	v10.5.8	Trust: 0.8
vendor:	apple	model:	ios	scope:	eq	version:	3.0 to 4.2.1 (iphone 3gs after )	Trust: 0.8
vendor:	apple	model:	ios	scope:	eq	version:	3.1 to 4.2.1 (ipod touch (3rd generation) after )	Trust: 0.8
vendor:	apple	model:	ios	scope:	eq	version:	3.2 to 4.2.1 (ipad for )	Trust: 0.8
vendor:	apple	model:	ipad	scope:	-	version:	-	Trust: 0.8
vendor:	apple	model:	iphone	scope:	-	version:	-	Trust: 0.8
vendor:	apple	model:	ipod touch	scope:	-	version:	-	Trust: 0.8
vendor:	apple	model:	safari	scope:	eq	version:	5	Trust: 0.8
vendor:	webkit	model:	open source project webkit	scope:	eq	version:	1.2.5	Trust: 0.3
vendor:	webkit	model:	open source project webkit	scope:	eq	version:	1.2.3	Trust: 0.3
vendor:	webkit	model:	open source project webkit	scope:	eq	version:	1.2.2	Trust: 0.3
vendor:	webkit	model:	open source project webkit r77705	scope:	-	version:	-	Trust: 0.3
vendor:	webkit	model:	open source project webkit r52833	scope:	-	version:	-	Trust: 0.3
vendor:	webkit	model:	open source project webkit r52401	scope:	-	version:	-	Trust: 0.3
vendor:	webkit	model:	open source project webkit r51295	scope:	-	version:	-	Trust: 0.3
vendor:	webkit	model:	open source project webkit r38566	scope:	-	version:	-	Trust: 0.3
vendor:	webkit	model:	open source project webkit	scope:	eq	version:	1.2.x	Trust: 0.3
vendor:	webkit	model:	open source project webkit	scope:	eq	version:	1.2.2-1	Trust: 0.3
vendor:	webkit	model:	open source project webkit	scope:	eq	version:	0	Trust: 0.3
vendor:	apple	model:	safari for windows	scope:	eq	version:	4.1.2	Trust: 0.3
vendor:	apple	model:	safari for windows	scope:	eq	version:	4.0.5	Trust: 0.3
vendor:	apple	model:	safari	scope:	eq	version:	4.0.5	Trust: 0.3
vendor:	apple	model:	safari for windows	scope:	eq	version:	4.0.4	Trust: 0.3
vendor:	apple	model:	safari	scope:	eq	version:	4.0.4	Trust: 0.3
vendor:	apple	model:	safari for windows	scope:	eq	version:	4.0.3	Trust: 0.3
vendor:	apple	model:	safari	scope:	eq	version:	4.0.3	Trust: 0.3
vendor:	apple	model:	safari for windows	scope:	eq	version:	4.0.2	Trust: 0.3
vendor:	apple	model:	safari	scope:	eq	version:	4.0.2	Trust: 0.3
vendor:	apple	model:	safari	scope:	eq	version:	4.0.1	Trust: 0.3
vendor:	apple	model:	safari for windows	scope:	eq	version:	5.0.3	Trust: 0.3
vendor:	apple	model:	safari	scope:	eq	version:	5.0.3	Trust: 0.3
vendor:	apple	model:	safari for windows	scope:	eq	version:	5.0.2	Trust: 0.3
vendor:	apple	model:	safari	scope:	eq	version:	5.0.2	Trust: 0.3
vendor:	apple	model:	safari for windows	scope:	eq	version:	5.0.1	Trust: 0.3
vendor:	apple	model:	safari	scope:	eq	version:	5.0.1	Trust: 0.3
vendor:	apple	model:	safari for windows	scope:	eq	version:	5.0	Trust: 0.3
vendor:	apple	model:	safari	scope:	eq	version:	5.0	Trust: 0.3
vendor:	apple	model:	safari for windows	scope:	eq	version:	4.1.3	Trust: 0.3
vendor:	apple	model:	safari	scope:	eq	version:	4.1.3	Trust: 0.3
vendor:	apple	model:	safari	scope:	eq	version:	4.1.2	Trust: 0.3
vendor:	apple	model:	safari	scope:	eq	version:	4.1.1	Trust: 0.3
vendor:	apple	model:	safari	scope:	eq	version:	4.1	Trust: 0.3
vendor:	apple	model:	safari beta	scope:	eq	version:	4.0	Trust: 0.3
vendor:	apple	model:	safari	scope:	eq	version:	4.0	Trust: 0.3
vendor:	apple	model:	safari for windows	scope:	eq	version:	4	Trust: 0.3
vendor:	apple	model:	safari beta	scope:	eq	version:	4	Trust: 0.3
vendor:	apple	model:	safari	scope:	eq	version:	4	Trust: 0.3
vendor:	apple	model:	mobile safari	scope:	eq	version:	0	Trust: 0.3
vendor:	apple	model:	itunes	scope:	eq	version:	9.0.1.8	Trust: 0.3
vendor:	apple	model:	itunes	scope:	eq	version:	9.0	Trust: 0.3
vendor:	apple	model:	itunes	scope:	eq	version:	9.1	Trust: 0.3
vendor:	apple	model:	ipod touch	scope:	eq	version:	0	Trust: 0.3
vendor:	apple	model:	iphone	scope:	eq	version:	0	Trust: 0.3
vendor:	apple	model:	ipad	scope:	eq	version:	0	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.2.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.0.2	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.0.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	3.2.2	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	3.2.1	Trust: 0.3
vendor:	apple	model:	ios beta	scope:	eq	version:	4.2	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.2	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	3.2	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	2.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	2.0	Trust: 0.3
vendor:	apple	model:	safari for windows	scope:	ne	version:	5.0.4	Trust: 0.3
vendor:	apple	model:	safari	scope:	ne	version:	5.0.4	Trust: 0.3
vendor:	apple	model:	itunes	scope:	ne	version:	10.2	Trust: 0.3
vendor:	apple	model:	ios	scope:	ne	version:	4.3	Trust: 0.3

sources: BID: 46713 // JVNDB: JVNDB-2011-001328 // CNNVD: CNNVD-201103-088 // NVD: CVE-2011-0138

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2011-0138
value:	HIGH
Trust: 1.0
NVD:	CVE-2011-0138
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-201103-088
value:	HIGH
Trust: 0.6
VULHUB:	VHN-48083
value:	HIGH
Trust: 0.1
VULMON:	CVE-2011-0138
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2011-0138
severity:	HIGH
baseScore:	7.6
vectorString:	AV:N/AC:H/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	HIGH
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	4.9
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.9
VULHUB:	VHN-48083
severity:	HIGH
baseScore:	7.6
vectorString:	AV:N/AC:H/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	HIGH
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	4.9
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-48083 // VULMON: CVE-2011-0138 // JVNDB: JVNDB-2011-001328 // CNNVD: CNNVD-201103-088 // NVD: CVE-2011-0138

PROBLEMTYPE DATA

problemtype:

CWE-119

Trust: 1.9

sources: VULHUB: VHN-48083 // JVNDB: JVNDB-2011-001328 // NVD: CVE-2011-0138

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201103-088

TYPE

buffer overflow

Trust: 0.6

sources: CNNVD: CNNVD-201103-088

CONFIGURATIONS

sources: JVNDB: JVNDB-2011-001328

PATCH

title:	HT4554	url:	http://support.apple.com/kb/HT4554	Trust: 0.8
title:	HT4564	url:	http://support.apple.com/kb/HT4564	Trust: 0.8
title:	HT4566	url:	http://support.apple.com/kb/HT4566	Trust: 0.8
title:	HT4554	url:	http://support.apple.com/kb/HT4554?viewlocale=ja_JP	Trust: 0.8
title:	HT4564	url:	http://support.apple.com/kb/HT4564?viewlocale=ja_JP	Trust: 0.8
title:	HT4566	url:	http://support.apple.com/kb/HT4566?viewlocale=ja_JP	Trust: 0.8
title:	iTunes 10.2	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=39588	Trust: 0.6
title:	iTunes 10.2 for Windows (64 bit)	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=39587	Trust: 0.6

sources: JVNDB: JVNDB-2011-001328 // CNNVD: CNNVD-201103-088

EXTERNAL IDS

db:	NVD	id:	CVE-2011-0138	Trust: 2.9
db:	JVNDB	id:	JVNDB-2011-001328	Trust: 0.8
db:	CNNVD	id:	CNNVD-201103-088	Trust: 0.7
db:	APPLE	id:	APPLE-SA-2011-03-02-1	Trust: 0.6
db:	BID	id:	46713	Trust: 0.4
db:	VULHUB	id:	VHN-48083	Trust: 0.1
db:	VULMON	id:	CVE-2011-0138	Trust: 0.1

sources: VULHUB: VHN-48083 // VULMON: CVE-2011-0138 // BID: 46713 // JVNDB: JVNDB-2011-001328 // CNNVD: CNNVD-201103-088 // NVD: CVE-2011-0138

REFERENCES

url:	http://lists.apple.com/archives/security-announce/2011/mar/msg00000.html	Trust: 1.8
url:	http://support.apple.com/kb/ht4554	Trust: 1.8
url:	http://lists.apple.com/archives/security-announce/2011//mar/msg00003.html	Trust: 1.2
url:	http://lists.apple.com/archives/security-announce/2011//mar/msg00004.html	Trust: 1.2
url:	http://support.apple.com/kb/ht4564	Trust: 1.2
url:	http://support.apple.com/kb/ht4566	Trust: 1.2
url:	https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a17452	Trust: 1.2
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2011-0138	Trust: 0.8
url:	http://jvn.jp/cert/jvnvu556020	Trust: 0.8
url:	http://jvn.jp/cert/jvnvu867452	Trust: 0.8
url:	http://jvn.jp/cert/jvnvu643615	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2011-0138	Trust: 0.8
url:	http://www.apple.com/itunes/	Trust: 0.3
url:	http://www.webkit.org/	Trust: 0.3
url:	https://cwe.mitre.org/data/definitions/119.html	Trust: 0.1
url:	https://www.rapid7.com/db/vulnerabilities/apple-safari-cve-2011-0138	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1
url:	http://tools.cisco.com/security/center/viewalert.x?alertid=22585	Trust: 0.1

sources: VULHUB: VHN-48083 // VULMON: CVE-2011-0138 // BID: 46713 // JVNDB: JVNDB-2011-001328 // CNNVD: CNNVD-201103-088 // NVD: CVE-2011-0138

CREDITS

kuzzcc

Trust: 0.3

sources: BID: 46713

SOURCES

db:	VULHUB	id:	VHN-48083
db:	VULMON	id:	CVE-2011-0138
db:	BID	id:	46713
db:	JVNDB	id:	JVNDB-2011-001328
db:	CNNVD	id:	CNNVD-201103-088
db:	NVD	id:	CVE-2011-0138

LAST UPDATE DATE

2025-04-11T22:39:30.210000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-48083	date:	2017-09-19T00:00:00
db:	VULMON	id:	CVE-2011-0138	date:	2017-09-19T00:00:00
db:	BID	id:	46713	date:	2011-03-09T19:28:00
db:	JVNDB	id:	JVNDB-2011-001328	date:	2011-03-31T00:00:00
db:	CNNVD	id:	CNNVD-201103-088	date:	2011-03-08T00:00:00
db:	NVD	id:	CVE-2011-0138	date:	2025-04-11T00:51:21.963

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-48083	date:	2011-03-03T00:00:00
db:	VULMON	id:	CVE-2011-0138	date:	2011-03-03T00:00:00
db:	BID	id:	46713	date:	2011-03-02T00:00:00
db:	JVNDB	id:	JVNDB-2011-001328	date:	2011-03-31T00:00:00
db:	CNNVD	id:	CNNVD-201103-088	date:	2011-03-04T00:00:00
db:	NVD	id:	CVE-2011-0138	date:	2011-03-03T20:00:02.083