Multiple vulnerabilities in Apple iCloud
| Risk | High |
| Patch available | YES |
| Number of vulnerabilities | 6 |
| CVE-ID | CVE-2017-13856 CVE-2017-13866 CVE-2017-13870 CVE-2017-7156 CVE-2017-7157 CVE-2017-13864 |
| CWE-ID | CWE-119 CWE-200 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
iCloud for Windows Client/Desktop applications / Other client software |
| Vendor | Apple Inc. |
Security Bulletin
This security bulletin contains information about 6 vulnerabilities.
1) Memory corruption
EUVDB-ID: #VU9668
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2017-13856
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The weakness exists due to boundary error when handling malicious input. A remote attacker can trick the victim into loading a specially crafted web content, trigger memory corruption in the WebKit component and execute arbitrary code with privileges of the current user.
Successful exploitation of the vulnerability may result in system compromise.
Update to version 7.2.
Vulnerable software versionsiCloud for Windows: 6.0.0 - 6.2.2
CPE2.3- cpe:2.3:a:apple:icloud_for_windows:6.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:6.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:6.1.0:*:*:*:*:*:*:*
https://support.apple.com/en-us/HT208328
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Memory corruption
EUVDB-ID: #VU9670
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2017-13866
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The weakness exists due to boundary error when handling malicious input. A remote attacker can trick the victim into loading a specially crafted web content, trigger memory corruption in the WebKit component and execute arbitrary code with privileges of the current user.
Successful exploitation of the vulnerability may result in system compromise.
Update to version 7.2.
Vulnerable software versionsiCloud for Windows: 6.0.0 - 6.2.2
CPE2.3- cpe:2.3:a:apple:icloud_for_windows:6.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:6.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:6.1.0:*:*:*:*:*:*:*
https://support.apple.com/en-us/HT208328
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
3) Memory corruption
EUVDB-ID: #VU9669
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2017-13870
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The weakness exists due to boundary error when handling malicious input. A remote attacker can trick the victim into loading a specially crafted web content, trigger memory corruption in the WebKit component and execute arbitrary code with privileges of the current user.
Successful exploitation of the vulnerability may result in system compromise.
Update to version 7.2.
Vulnerable software versionsiCloud for Windows: 6.0.0 - 6.2.2
CPE2.3- cpe:2.3:a:apple:icloud_for_windows:6.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:6.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:6.1.0:*:*:*:*:*:*:*
https://support.apple.com/en-us/HT208328
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
4) Memory corruption
EUVDB-ID: #VU9666
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2017-7156
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The weakness exists due to boundary error when handling malicious input. A remote attacker can trick the victim into loading a specially crafted web content, trigger memory corruption in the WebKit component and execute arbitrary code with privileges of the current user.
Successful exploitation of the vulnerability may result in system compromise.
Update to version 7.2.
Vulnerable software versionsiCloud for Windows: 6.0.0 - 6.2.2
CPE2.3- cpe:2.3:a:apple:icloud_for_windows:6.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:6.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:6.1.0:*:*:*:*:*:*:*
https://support.apple.com/en-us/HT208328
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
5) Memory corruption
EUVDB-ID: #VU9667
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2017-7157
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The weakness exists due to boundary error when handling malicious input. A remote attacker can trick the victim into loading a specially crafted web content, trigger memory corruption in the WebKit component and execute arbitrary code with privileges of the current user.
Successful exploitation of the vulnerability may result in system compromise.
Update to version 7.2.
Vulnerable software versionsiCloud for Windows: 6.0.0 - 6.2.2
CPE2.3- cpe:2.3:a:apple:icloud_for_windows:6.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:6.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:6.1.0:*:*:*:*:*:*:*
https://support.apple.com/en-us/HT208328
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
6) Information disclosure
EUVDB-ID: #VU9671
Risk: Low
CVSSv4.0: 4.9 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2017-13864
CWE-ID:
CWE-200 - Information exposure
Exploit availability: No
DescriptionThe vulnerability allows a remote authenticated attacker to obtain potentially sensitive information on the target system.
The weakness exists due to a privacy issue in the use of client certificates. A remote attacker can obtain credentials and track the user's actions.
Update to version 7.2.
Vulnerable software versionsiCloud for Windows: 6.0.0 - 6.2.2
CPE2.3- cpe:2.3:a:apple:icloud_for_windows:6.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:6.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:6.1.0:*:*:*:*:*:*:*
https://support.apple.com/en-us/HT208328
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
