CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
65.2%
Multiple unspecified vulnerabilities in WebKit in Apple Safari before 4.0.4 on Windows allow remote FTP servers to execute arbitrary code, cause a denial of service (application crash), or obtain sensitive information via a crafted directory listing in a reply.
Vendor | Product | Version | CPE |
---|---|---|---|
apple | safari | * | cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:* |
apple | safari | 0.8 | cpe:2.3:a:apple:safari:0.8:*:*:*:*:*:*:* |
apple | safari | 0.9 | cpe:2.3:a:apple:safari:0.9:*:*:*:*:*:*:* |
apple | safari | 1.0 | cpe:2.3:a:apple:safari:1.0:*:*:*:*:*:*:* |
apple | safari | 1.0 | cpe:2.3:a:apple:safari:1.0:beta:*:*:*:*:*:* |
apple | safari | 1.0 | cpe:2.3:a:apple:safari:1.0:beta2:*:*:*:*:*:* |
apple | safari | 1.0.0 | cpe:2.3:a:apple:safari:1.0.0:*:*:*:*:*:*:* |
apple | safari | 1.0.0b1 | cpe:2.3:a:apple:safari:1.0.0b1:*:*:*:*:*:*:* |
apple | safari | 1.0.0b2 | cpe:2.3:a:apple:safari:1.0.0b2:*:*:*:*:*:*:* |
apple | safari | 1.0.1 | cpe:2.3:a:apple:safari:1.0.1:*:*:*:*:*:*:* |
lists.apple.com/archives/security-announce/2009/Nov/msg00001.html
lists.apple.com/archives/security-announce/2010/Feb/msg00000.html
lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html
osvdb.org/59943
secunia.com/advisories/37346
secunia.com/advisories/37393
secunia.com/advisories/37397
secunia.com/advisories/43068
support.apple.com/kb/HT3949
support.apple.com/kb/HT4013
www.securityfocus.com/bid/36995
www.securitytracker.com/id?1023166
www.vupen.com/english/advisories/2009/3217
www.vupen.com/english/advisories/2011/0212
bugzilla.redhat.com/show_bug.cgi?id=525788
exchange.xforce.ibmcloud.com/vulnerabilities/54241
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6362
www.redhat.com/archives/fedora-package-announce/2009-November/msg00545.html
www.redhat.com/archives/fedora-package-announce/2009-November/msg00549.html