Think you have a false positive on this rule?

Sid 1-47023

Message

BROWSER-WEBKIT Apple WebKit memory corruption attempt

Summary

This event is generated when an attacker attempts to exploit a memory corruption vulnerability in WebKit in various Apple products.

Impact

CVE-2018-4233:

CVSS base score 8.8

CVSS impact score 5.9

CVSS exploitability score 2.8

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Detailed information

Rule checks for attempts to exploit a memory corruption vulnerability in WebKit in various Apple products. CVE-2018-4233: An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari before 11.1.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. watchOS before 4.3.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.

Affected systems

  • apple icloud 5.2.1
  • apple icloud 6.0
  • apple icloud 6.0.1
  • apple icloud 6.1
  • apple icloud 6.1.1
  • apple icloud 6.2
  • apple icloud 7.0
  • apple icloud 7.1
  • apple icloud 7.2
  • apple icloud 7.3
  • apple icloud 7.4
  • apple itunes -
  • apple itunes 4.0.0
  • apple itunes 4.0.1
  • apple itunes 4.1.0
  • apple itunes 4.2.0
  • apple itunes 4.5
  • apple itunes 4.5.0
  • apple itunes 4.6
  • apple itunes 4.6.0
  • apple itunes 4.7
  • apple itunes 4.7.0
  • apple itunes 4.7.1
  • apple itunes 4.7.2
  • apple itunes 4.8.0
  • apple itunes 4.9.0
  • apple itunes 5.0
  • apple itunes 5.0.0
  • apple itunes 5.0.1
  • apple itunes 6.0.0
  • apple itunes 6.0.1
  • apple itunes 6.0.2
  • apple itunes 6.0.3
  • apple itunes 6.0.4
  • apple itunes 6.0.5
  • apple itunes 7.0.0
  • apple itunes 7.0.1
  • apple itunes 7.0.2
  • apple itunes 7.1.0
  • apple itunes 7.1.1
  • apple itunes 7.2.0
  • apple itunes 7.3.0
  • apple itunes 7.3.1
  • apple itunes 7.3.2
  • apple itunes 7.4
  • apple itunes 7.4.0
  • apple itunes 7.4.1
  • apple itunes 7.4.2
  • apple itunes 7.4.3
  • apple itunes 7.5
  • apple itunes 7.5.0
  • apple itunes 7.6
  • apple itunes 7.6.0
  • apple itunes 7.6.1
  • apple itunes 7.6.2
  • apple itunes 7.7
  • apple itunes 7.7.0
  • apple itunes 7.7.1
  • apple itunes 8.0.0
  • apple itunes 8.0.1
  • apple itunes 8.1
  • apple itunes 9.0.0
  • apple itunes 9.0.1
  • apple itunes 9.0.2
  • apple itunes 9.0.3
  • apple itunes 9.1
  • apple itunes 9.1.1
  • apple itunes 9.2
  • apple itunes 9.2.1
  • apple itunes 10.0
  • apple itunes 10.0.1
  • apple itunes 10.1
  • apple itunes 10.1.1
  • apple itunes 10.1.1.4
  • apple itunes 10.1.2
  • apple itunes 10.2
  • apple itunes 10.2.2.12
  • apple itunes 10.3
  • apple itunes 10.3.1
  • apple itunes 10.4
  • apple itunes 10.4.0.80
  • apple itunes 10.4.1
  • apple itunes 10.4.1.10
  • apple itunes 10.5
  • apple itunes 10.5.1
  • apple itunes 10.5.1.42
  • apple itunes 10.5.2
  • apple itunes 10.5.3
  • apple itunes 10.6
  • apple itunes 10.6.1
  • apple itunes 10.6.3
  • apple itunes 11.0
  • apple itunes 11.0.1
  • apple itunes 11.0.2
  • apple itunes 11.0.3
  • apple itunes 11.0.4
  • apple itunes 11.0.5
  • apple itunes 11.1
  • apple itunes 11.1.1
  • apple itunes 11.1.2
  • apple itunes 11.1.3
  • apple itunes 11.1.4
  • apple itunes 11.1.5
  • apple itunes 11.2
  • apple itunes 11.2.1
  • apple itunes 12.0
  • apple itunes 12.0.1
  • apple itunes 12.1
  • apple itunes 12.1.1
  • apple itunes 12.1.2
  • apple itunes 12.1.3
  • apple itunes 12.2
  • apple itunes 12.2.1
  • apple itunes 12.2.2
  • apple itunes 12.3
  • apple itunes 12.3.0
  • apple itunes 12.3.1
  • apple itunes 12.4
  • apple itunes 12.4.1
  • apple itunes 12.4.2
  • apple itunes 12.4.3
  • apple itunes 12.5
  • apple itunes 12.5.1
  • apple itunes 12.5.2
  • apple itunes 12.5.3
  • apple itunes 12.5.4
  • apple itunes 12.5.5
  • apple itunes 12.6
  • apple itunes 12.6.1
  • apple itunes 12.6.2
  • apple itunes 12.6.3
  • apple itunes 12.7
  • apple itunes 12.7.1
  • apple itunes 12.7.2
  • apple itunes 12.7.3
  • apple itunes 12.7.4
  • apple safari -
  • apple safari 1.0
  • apple safari 1.0.0
  • apple safari 1.0.0b1
  • apple safari 1.0.0b2
  • apple safari 1.0.1
  • apple safari 1.0.2
  • apple safari 1.0.3
  • apple safari 1.0b1
  • apple safari 1.1
  • apple safari 1.1.0
  • apple safari 1.1.1
  • apple safari 1.2
  • apple safari 1.2.0
  • apple safari 1.2.1
  • apple safari 1.2.2
  • apple safari 1.2.3
  • apple safari 1.2.4
  • apple safari 1.2.5
  • apple safari 1.3
  • apple safari 1.3.0
  • apple safari 1.3.1
  • apple safari 1.3.2
  • apple safari 2
  • apple safari 2.0
  • apple safari 2.0.0
  • apple safari 2.0.1
  • apple safari 2.0.2
  • apple safari 2.0.3
  • apple safari 2.0.4
  • apple safari 3
  • apple safari 3.0
  • apple safari 3.0.0
  • apple safari 3.0.0b
  • apple safari 3.0.1
  • apple safari 3.0.1b
  • apple safari 3.0.2
  • apple safari 3.0.2b
  • apple safari 3.0.3
  • apple safari 3.0.3b
  • apple safari 3.0.4
  • apple safari 3.0.4b
  • apple safari 3.1.0
  • apple safari 3.1.0b
  • apple safari 3.1.1
  • apple safari 3.1.1b
  • apple safari 3.1.2
  • apple safari 3.1.2b
  • apple safari 3.2.0
  • apple safari 3.2.0b
  • apple safari 3.2.1
  • apple safari 3.2.1b
  • apple safari 3.2.2
  • apple safari 3.2.2b
  • apple safari 4.0
  • apple safari 4.0.0b
  • apple safari 4.0.1
  • apple safari 4.0.2
  • apple safari 4.0.3
  • apple safari 4.0.4
  • apple safari 4.0.5
  • apple safari 4.1
  • apple safari 4.1.1
  • apple safari 4.1.2
  • apple safari 5.0
  • apple safari 5.0.1
  • apple safari 5.0.2
  • apple safari 5.0.4
  • apple safari 5.0.5
  • apple safari 5.0.6
  • apple safari 5.1
  • apple safari 5.1.1
  • apple safari 5.1.2
  • apple safari 5.1.3
  • apple safari 5.1.4
  • apple safari 5.1.5
  • apple safari 5.1.6
  • apple safari 5.1.7
  • apple safari 6.0
  • apple safari 6.0.1
  • apple safari 6.0.2
  • apple safari 6.0.3
  • apple safari 6.0.4
  • apple safari 6.0.5
  • apple safari 6.1
  • apple safari 6.1.1
  • apple safari 6.1.2
  • apple safari 6.1.3
  • apple safari 6.1.4
  • apple safari 6.1.5
  • apple safari 6.2.4
  • apple safari 6.2.5
  • apple safari 6.2.6
  • apple safari 6.2.8
  • apple safari 7.0
  • apple safari 7.0.1
  • apple safari 7.0.2
  • apple safari 7.0.3
  • apple safari 7.0.4
  • apple safari 7.0.5
  • apple safari 7.1
  • apple safari 7.1.4
  • apple safari 7.1.5
  • apple safari 7.1.6
  • apple safari 7.1.8
  • apple safari 8.0
  • apple safari 8.0.4
  • apple safari 8.0.5
  • apple safari 8.0.6
  • apple safari 8.0.8
  • apple safari 9.0.1
  • apple safari 9.0.2
  • apple safari 9.0.3
  • apple safari 9.1
  • apple safari 9.1.1
  • apple safari 9.1.3
  • apple safari 10.0.3
  • apple safari 10.1
  • apple safari 10.1.1
  • apple safari 10.1.2
  • apple safari 11.0
  • apple safari 11.0.1
  • apple safari 11.0.2
  • apple safari 11.0.3
  • apple safari 11.1
  • apple iphone_os 1.0.0
  • apple iphone_os 1.0.1
  • apple iphone_os 1.0.2
  • apple iphone_os 1.1.0
  • apple iphone_os 1.1.1
  • apple iphone_os 1.1.2
  • apple iphone_os 1.1.3
  • apple iphone_os 1.1.4
  • apple iphone_os 1.1.5
  • apple iphone_os 2.0
  • apple iphone_os 2.0.0
  • apple iphone_os 2.0.1
  • apple iphone_os 2.0.2
  • apple iphone_os 2.1
  • apple iphone_os 2.1.1
  • apple iphone_os 2.2
  • apple iphone_os 2.2.1
  • apple iphone_os 3.0
  • apple iphone_os 3.0.1
  • apple iphone_os 3.1
  • apple iphone_os 3.1.1
  • apple iphone_os 3.1.2
  • apple iphone_os 3.1.3
  • apple iphone_os 3.2
  • apple iphone_os 3.2.1
  • apple iphone_os 3.2.2
  • apple iphone_os 4.0
  • apple iphone_os 4.0.1
  • apple iphone_os 4.0.2
  • apple iphone_os 4.1
  • apple iphone_os 4.2.1
  • apple iphone_os 4.2.5
  • apple iphone_os 4.2.8
  • apple iphone_os 4.3.0
  • apple iphone_os 4.3.1
  • apple iphone_os 4.3.2
  • apple iphone_os 4.3.3
  • apple iphone_os 4.3.5
  • apple iphone_os 5.0
  • apple iphone_os 5.0.1
  • apple iphone_os 5.1
  • apple iphone_os 5.1.1
  • apple iphone_os 6.0
  • apple iphone_os 6.0.1
  • apple iphone_os 6.0.2
  • apple iphone_os 6.1
  • apple iphone_os 6.1.2
  • apple iphone_os 6.1.3
  • apple iphone_os 6.1.4
  • apple iphone_os 6.1.5
  • apple iphone_os 6.1.6
  • apple iphone_os 7.0
  • apple iphone_os 7.0.1
  • apple iphone_os 7.0.2
  • apple iphone_os 7.0.3
  • apple iphone_os 7.0.4
  • apple iphone_os 7.0.5
  • apple iphone_os 7.0.6
  • apple iphone_os 7.1
  • apple iphone_os 7.1.1
  • apple iphone_os 7.1.2
  • apple iphone_os 8.0
  • apple iphone_os 8.0.1
  • apple iphone_os 8.0.2
  • apple iphone_os 8.1
  • apple iphone_os 8.1.2
  • apple iphone_os 8.1.3
  • apple iphone_os 8.2
  • apple iphone_os 8.3
  • apple iphone_os 8.4.1
  • apple iphone_os 9.0
  • apple iphone_os 9.0.1
  • apple iphone_os 9.0.2
  • apple iphone_os 9.1
  • apple iphone_os 9.2
  • apple iphone_os 9.2.1
  • apple iphone_os 9.3
  • apple iphone_os 9.3.1
  • apple iphone_os 9.3.2
  • apple iphone_os 9.3.3
  • apple iphone_os 9.3.4
  • apple iphone_os 9.3.5
  • apple iphone_os 10.0
  • apple iphone_os 10.0.1
  • apple iphone_os 10.0.2
  • apple iphone_os 10.0.3
  • apple iphone_os 10.1
  • apple iphone_os 10.1.1
  • apple iphone_os 10.2
  • apple iphone_os 10.2.1
  • apple iphone_os 10.3
  • apple iphone_os 10.3.1
  • apple iphone_os 10.3.2
  • apple iphone_os 10.3.3
  • apple iphone_os 11
  • apple iphone_os 11.0
  • apple iphone_os 11.0.1
  • apple iphone_os 11.0.2
  • apple iphone_os 11.0.3
  • apple iphone_os 11.1
  • apple iphone_os 11.1.1
  • apple iphone_os 11.1.2
  • apple iphone_os 11.2
  • apple iphone_os 11.2.1
  • apple iphone_os 11.2.2
  • apple iphone_os 11.2.5
  • apple iphone_os 11.2.6
  • apple iphone_os 11.3
  • apple iphone_os 11.3.1
  • apple watchos 1.0
  • apple watchos 1.0.1
  • apple watchos 2.0
  • apple watchos 2.0.1
  • apple watchos 2.1
  • apple watchos 2.2
  • apple watchos 2.2.0
  • apple watchos 2.2.1
  • apple watchos 2.2.2
  • apple watchos 3.0
  • apple watchos 3.1
  • apple watchos 3.1.1
  • apple watchos 3.1.3
  • apple watchos 3.2
  • apple watchos 3.2.2
  • apple watchos 3.2.3
  • apple watchos 4
  • apple watchos 4.0
  • apple watchos 4.0.1
  • apple watchos 4.1
  • apple watchos 4.2.3
  • apple watchos 4.3
  • canonical ubuntu_linux 16.04
  • canonical ubuntu_linux 17.10
  • canonical ubuntu_linux 18.04

Ease of attack

CVE-2018-4233:

Access Vector

Access Complexity

Authentication

False positives

Not known

False negatives

Not known

Corrective action

Contributors

  • Cisco's Talos Intelligence Group

Additional References

  • support.apple.com/en-us/HT208848