PT-2015-1912 · Apple · Webkit+1
Matt Weston
+1
·
Published
2015-08-06
·
Updated
2016-12-24
·
CVE-2015-5759
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
iOS versions prior to 8.4.1
Description
The issue is related to errors in security settings of the WebKit component in the iOS operating system. It allows remote attackers to spoof clicks via a crafted web site that leverages tap events, potentially enabling an attacker to substitute URL link clicks.
Recommendations
For iOS versions prior to 8.4.1, update to version 8.4.1 or later to resolve the issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Webkit
Ios