Details of VAR-201509-0122

ID

VAR-201509-0122

CVE

CVE-2015-5822

TITLE

Apple iOS of JavaScriptCore and iTunes Used in etc. WebKit Vulnerabilities in arbitrary code execution

Trust: 0.8

sources: JVNDB: JVNDB-2015-004787

DESCRIPTION

WebKit, as used in JavaScriptCore in Apple iOS before 9 and iTunes before 12.3, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2015-09-16-1 and APPLE-SA-2015-09-16-3. Apple iOS of JavaScriptCore and iTunes Used in etc. Apple iOS is prone to multiple security vulnerabilities. Attackers can exploit these issues to bypass security restrictions, obtain sensitive information, execute arbitrary code, cause a denial-of-service condition, perform unauthorized actions and gain system privileges; this may aid in launching further attacks. Versions prior to iOS 9 are vulnerable. The former is an operating system developed for mobile devices. The latter is a suite of media player applications. WebKit is a set of open source web browser engines jointly developed by companies such as KDE, Apple (Apple), and Google (Google), and is currently used by browsers such as Apple Safari and Google Chrome. ============================================================================ Ubuntu Security Notice USN-2937-1 March 21, 2016 webkitgtk vulnerabilities ============================================================================ A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 15.10 - Ubuntu 14.04 LTS Summary: Several security issues were fixed in WebKitGTK+. Software Description: - webkitgtk: Web content engine library for GTK+ Details: A large number of security issues were discovered in the WebKitGTK+ Web and JavaScript engines. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 15.10: libjavascriptcoregtk-1.0-0 2.4.10-0ubuntu0.15.10.1 libjavascriptcoregtk-3.0-0 2.4.10-0ubuntu0.15.10.1 libwebkitgtk-1.0-0 2.4.10-0ubuntu0.15.10.1 libwebkitgtk-3.0-0 2.4.10-0ubuntu0.15.10.1 Ubuntu 14.04 LTS: libjavascriptcoregtk-1.0-0 2.4.10-0ubuntu0.14.04.1 libjavascriptcoregtk-3.0-0 2.4.10-0ubuntu0.14.04.1 libwebkitgtk-1.0-0 2.4.10-0ubuntu0.14.04.1 libwebkitgtk-3.0-0 2.4.10-0ubuntu0.14.04.1 This update uses a new upstream release, which includes additional bug fixes. After a standard system update you need to restart any applications that use WebKitGTK+, such as Epiphany and Evolution, to make all the necessary changes. References: http://www.ubuntu.com/usn/usn-2937-1 CVE-2014-1748, CVE-2015-1071, CVE-2015-1076, CVE-2015-1081, CVE-2015-1083, CVE-2015-1120, CVE-2015-1122, CVE-2015-1127, CVE-2015-1153, CVE-2015-1155, CVE-2015-3658, CVE-2015-3659, CVE-2015-3727, CVE-2015-3731, CVE-2015-3741, CVE-2015-3743, CVE-2015-3745, CVE-2015-3747, CVE-2015-3748, CVE-2015-3749, CVE-2015-3752, CVE-2015-5788, CVE-2015-5794, CVE-2015-5801, CVE-2015-5809, CVE-2015-5822, CVE-2015-5928 Package Information: https://launchpad.net/ubuntu/+source/webkitgtk/2.4.10-0ubuntu0.15.10.1 https://launchpad.net/ubuntu/+source/webkitgtk/2.4.10-0ubuntu0.14.04.1

Trust: 2.16

sources: NVD: CVE-2015-5822 // JVNDB: JVNDB-2015-004787 // BID: 76764 // VULHUB: VHN-83783 // VULMON: CVE-2015-5822 // PACKETSTORM: 136327

AFFECTED PRODUCTS

vendor:	apple	model:	itunes	scope:	lte	version:	12.2	Trust: 1.0
vendor:	apple	model:	iphone os	scope:	lte	version:	8.4.1	Trust: 1.0
vendor:	apple	model:	safari	scope:	lte	version:	8.0.8	Trust: 1.0
vendor:	apple	model:	ios	scope:	lt	version:	9 (ipad 2 or later )	Trust: 0.8
vendor:	apple	model:	ios	scope:	lt	version:	9 (iphone 4s or later )	Trust: 0.8
vendor:	apple	model:	ios	scope:	lt	version:	9 (ipod touch no. 5 after generation )	Trust: 0.8
vendor:	apple	model:	itunes	scope:	lt	version:	12.3 (windows 7 or later )	Trust: 0.8
vendor:	apple	model:	safari	scope:	lt	version:	9 (os x el capitan v10.11)	Trust: 0.8
vendor:	apple	model:	safari	scope:	lt	version:	9 (os x mavericks v10.9.5)	Trust: 0.8
vendor:	apple	model:	safari	scope:	lt	version:	9 (os x yosemite v10.10.5)	Trust: 0.8
vendor:	apple	model:	itunes	scope:	eq	version:	12.2	Trust: 0.6
vendor:	apple	model:	iphone os	scope:	eq	version:	8.4.1	Trust: 0.6
vendor:	apple	model:	safari	scope:	eq	version:	8.0.8	Trust: 0.6
vendor:	apple	model:	ipod touch	scope:	eq	version:	0	Trust: 0.3
vendor:	apple	model:	iphone	scope:	eq	version:	0	Trust: 0.3
vendor:	apple	model:	ipad	scope:	eq	version:	0	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.2.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.0.2	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.0.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	3.2.2	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	3.2.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	5.1.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	5.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	5.0.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	5	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.3.5	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.3.4	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.3.3	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.3.2	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.3.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.3	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.2.9	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.2.8	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.2.7	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.2.6	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.2.5	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.2.10	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.2	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	3.2	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	3.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	3.0	Trust: 0.3

sources: BID: 76764 // JVNDB: JVNDB-2015-004787 // CNNVD: CNNVD-201509-310 // NVD: CVE-2015-5822

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2015-5822
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2015-5822
value:	MEDIUM
Trust: 0.8
CNNVD:	CNNVD-201509-310
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-83783
value:	MEDIUM
Trust: 0.1
VULMON:	CVE-2015-5822
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2015-5822
severity:	MEDIUM
baseScore:	6.8
vectorString:	AV:N/AC:M/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	8.6
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.9
VULHUB:	VHN-83783
severity:	MEDIUM
baseScore:	6.8
vectorString:	AV:N/AC:M/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	8.6
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-83783 // VULMON: CVE-2015-5822 // JVNDB: JVNDB-2015-004787 // CNNVD: CNNVD-201509-310 // NVD: CVE-2015-5822

PROBLEMTYPE DATA

problemtype:	CWE-119	Trust: 1.1
problemtype:	CWE-20	Trust: 0.8

sources: VULHUB: VHN-83783 // JVNDB: JVNDB-2015-004787 // NVD: CVE-2015-5822

THREAT TYPE

remote

Trust: 0.7

sources: PACKETSTORM: 136327 // CNNVD: CNNVD-201509-310

TYPE

buffer overflow

Trust: 0.6

sources: CNNVD: CNNVD-201509-310

CONFIGURATIONS

sources: JVNDB: JVNDB-2015-004787

PATCH

title:	Apple security updates	url:	https://support.apple.com/en-us/HT201222	Trust: 0.8
title:	APPLE-SA-2015-09-16-1 iOS 9	url:	http://lists.apple.com/archives/security-announce/2015/Sep/msg00001.html	Trust: 0.8
title:	APPLE-SA-2015-09-16-3 iTunes 12.3	url:	http://lists.apple.com/archives/security-announce/2015/Sep/msg00003.html	Trust: 0.8
title:	APPLE-SA-2015-09-30-2 Safari 9	url:	http://lists.apple.com/archives/security-announce/2015/Sep/msg00007.html	Trust: 0.8
title:	HT205221	url:	https://support.apple.com/en-us/HT205221	Trust: 0.8
title:	HT205265	url:	https://support.apple.com/en-us/HT205265	Trust: 0.8
title:	HT205212	url:	https://support.apple.com/en-us/HT205212	Trust: 0.8
title:	HT205212	url:	http://support.apple.com/ja-jp/HT205212	Trust: 0.8
title:	HT205221	url:	http://support.apple.com/ja-jp/HT205221	Trust: 0.8
title:	HT205265	url:	http://support.apple.com/ja-jp/HT205265	Trust: 0.8
title:	iPhone7,1_9.0_13A344_Restore	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=57670	Trust: 0.6
title:	iTunes6464Setup	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=57671	Trust: 0.6
title:	Ubuntu Security Notice: webkitgtk vulnerabilities	url:	https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice&qid=USN-2937-1	Trust: 0.1

sources: VULMON: CVE-2015-5822 // JVNDB: JVNDB-2015-004787 // CNNVD: CNNVD-201509-310

EXTERNAL IDS

db:	NVD	id:	CVE-2015-5822	Trust: 3.0
db:	BID	id:	76764	Trust: 1.5
db:	SECTRACK	id:	1033609	Trust: 1.2
db:	JVN	id:	JVNVU97220341	Trust: 0.8
db:	JVN	id:	JVNVU99970459	Trust: 0.8
db:	JVNDB	id:	JVNDB-2015-004787	Trust: 0.8
db:	CNNVD	id:	CNNVD-201509-310	Trust: 0.7
db:	VULHUB	id:	VHN-83783	Trust: 0.1
db:	VULMON	id:	CVE-2015-5822	Trust: 0.1
db:	PACKETSTORM	id:	136327	Trust: 0.1

sources: VULHUB: VHN-83783 // VULMON: CVE-2015-5822 // BID: 76764 // JVNDB: JVNDB-2015-004787 // PACKETSTORM: 136327 // CNNVD: CNNVD-201509-310 // NVD: CVE-2015-5822

REFERENCES

url:	http://lists.apple.com/archives/security-announce/2015/sep/msg00001.html	Trust: 1.8
url:	http://lists.apple.com/archives/security-announce/2015/sep/msg00003.html	Trust: 1.8
url:	https://support.apple.com/ht205212	Trust: 1.8
url:	https://support.apple.com/ht205221	Trust: 1.8
url:	http://www.ubuntu.com/usn/usn-2937-1	Trust: 1.3
url:	http://lists.apple.com/archives/security-announce/2015/sep/msg00007.html	Trust: 1.2
url:	http://www.securityfocus.com/bid/76764	Trust: 1.2
url:	https://support.apple.com/ht205265	Trust: 1.2
url:	http://www.securitytracker.com/id/1033609	Trust: 1.2
url:	http://lists.opensuse.org/opensuse-updates/2016-03/msg00132.html	Trust: 1.2
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-5822	Trust: 0.8
url:	http://jvn.jp/vu/jvnvu99970459/index.html	Trust: 0.8
url:	http://jvn.jp/vu/jvnvu97220341/index.html	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-5822	Trust: 0.8
url:	http://www.apple.com/ios/	Trust: 0.3
url:	http://www.apple.com/ipad/	Trust: 0.3
url:	http://www.apple.com/iphone/	Trust: 0.3
url:	http://www.apple.com/ipodtouch/	Trust: 0.3
url:	https://cwe.mitre.org/data/definitions/119.html	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1
url:	https://usn.ubuntu.com/2937-1/	Trust: 0.1
url:	http://tools.cisco.com/security/center/viewalert.x?alertid=41306	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-5809	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-1127	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-1120	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3741	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-1083	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-5788	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3727	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3658	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-5822	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3752	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-1076	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/webkitgtk/2.4.10-0ubuntu0.15.10.1	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-1155	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-1153	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-5794	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3748	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3659	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-1071	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3749	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-1122	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2014-1748	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-5928	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-1081	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3731	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-5801	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3743	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3747	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3745	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/webkitgtk/2.4.10-0ubuntu0.14.04.1	Trust: 0.1

sources: VULHUB: VHN-83783 // VULMON: CVE-2015-5822 // BID: 76764 // JVNDB: JVNDB-2015-004787 // PACKETSTORM: 136327 // CNNVD: CNNVD-201509-310 // NVD: CVE-2015-5822

CREDITS

Xiaofeng Zheng, Tsinghua University, Sam Greenhalgh, Andreas Kurtz, Erling Ellingsen, Amit Klein, Timothy J. Wood, Jin Han, Su Mon Kywe, Qiang Yan, Robert Deng, Debin Gao, Yingjiu Li, Feng Bao and Jianying Zhou, 1x7e1, beist of grayhash, Filippo Bigarella,

Trust: 0.3

sources: BID: 76764

SOURCES

db:	VULHUB	id:	VHN-83783
db:	VULMON	id:	CVE-2015-5822
db:	BID	id:	76764
db:	JVNDB	id:	JVNDB-2015-004787
db:	PACKETSTORM	id:	136327
db:	CNNVD	id:	CNNVD-201509-310
db:	NVD	id:	CVE-2015-5822

LAST UPDATE DATE

2025-04-13T21:14:51.845000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-83783	date:	2016-12-22T00:00:00
db:	VULMON	id:	CVE-2015-5822	date:	2016-12-22T00:00:00
db:	BID	id:	76764	date:	2015-11-03T19:44:00
db:	JVNDB	id:	JVNDB-2015-004787	date:	2015-10-05T00:00:00
db:	CNNVD	id:	CNNVD-201509-310	date:	2015-09-21T00:00:00
db:	NVD	id:	CVE-2015-5822	date:	2025-04-12T10:46:40.837

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-83783	date:	2015-09-18T00:00:00
db:	VULMON	id:	CVE-2015-5822	date:	2015-09-18T00:00:00
db:	BID	id:	76764	date:	2015-09-16T00:00:00
db:	JVNDB	id:	JVNDB-2015-004787	date:	2015-09-25T00:00:00
db:	PACKETSTORM	id:	136327	date:	2016-03-22T00:03:33
db:	CNNVD	id:	CNNVD-201509-310	date:	2015-09-21T00:00:00
db:	NVD	id:	CVE-2015-5822	date:	2015-09-18T10:59:41.393