CVE-2016-1781

Loading...

General

Score:4.3/10.0
Severity:Low
Category:Input Validation Error

Impact Metrics

Confidentiality:Partial
Integrity:None
Availability:None

Exploitability Metrics

Access Vector:Network
Access Complexity:Medium
Authentication:None

Relative vulnerabilities

CVE-2009-2197, CVE-2015-1819, CVE-2015-5312, CVE-2015-7499, CVE-2015-7500, CVE-2015-7942, CVE-2015-8035, CVE-2015-8242, CVE-2015-8659, CVE-2016-0801, CVE-2016-0802, CVE-2016-1734, CVE-2016-1740, CVE-2016-1748, CVE-2016-1750, CVE-2016-1751, CVE-2016-1752, CVE-2016-1753, CVE-2016-1754, CVE-2016-1755, CVE-2016-1756, CVE-2016-1757, CVE-2016-1758, CVE-2016-1760, CVE-2016-1761, CVE-2016-1762, CVE-2016-1763, CVE-2016-1766, CVE-2016-1771, CVE-2016-1772, CVE-2016-1775, CVE-2016-1778, CVE-2016-1779, CVE-2016-1780, CVE-2016-1782, CVE-2016-1783, CVE-2016-1784, CVE-2016-1785, CVE-2016-1786, CVE-2016-1788, CVE-2016-1950

Published on 24/03/16 - Updated on 03/12/16

Description

WebKit in Apple iOS before 9.3 and Safari before 9.1 mishandles attachment URLs, which makes it easier for remote web servers to track users via unspecified vectors.

Category: Input Validation Error

CWE-19 (Data Handling)
Weaknesses in this category are typically found in functionality that processes data.

Security Notices

US National Vulnerability DatabaseCVE-2016-1781
Agence Nationale de la Sécurité des Systèmes d'Information CERTFR-2016-AVI-106
Renater 2016/VULN125, 2016/VULN127

Exploits

No exploits available for this CVE in our database.

Relative technologies

VendorProduct
appleiphone_os
applesafari

Share this vulnerability with:

Twitter Facebook LinkedIn Mail