Lucene search

Tenable700033.PRM

HistoryMar 31, 2017 - 12:00 a.m.

Safari < 10.1 Multiple Vulnerabilities

2017-03-3100:00:00

Tenable

www.tenable.com

JSON

Versions of Safari prior to 10.1 are affected by multiple vulnerabilities :

An unspecified state management flaw exists that may allow a context-dependent attacker to spoof the address bar. No further details have been provided. (CVE-2017-2376)
An unspecified flaw exists in the handling of HTTP authentication. This may allow a context-dependent attacker to display authentication sheets on arbitrary web sites and cause a denial of service. (CVE-2017-2389)

Additional flaws exist in the following components :

AutofFill (CVE-2017-2385)
CoreGraphics (CVE-2017-2444)
FaceTime (2017-2453)
Kernel (CVE-2017-2490)
Webkit (CVE-2017-2367, CVE-2017-2378, CVE-2017-2386, CVE-2017-2394, CVE-2017-2395, CVE-2017-2396, CVE-2017-2405, CVE-2017-2415, CVE-2017-2419, CVE-2017-2424, CVE-2017-2433, CVE-2017-2442, CVE-2017-2445, CVE-2017-2446, CVE-2017-2447, CVE-2017-2454, CVE-2017-2455, CVE-2017-2459, CVE-2017-2460, CVE-2017-2464, CVE-2017-2465, CVE-2017-2466, CVE-2017-2468, CVE-2017-2469, CVE-2017-2470, CVE-2017-2471, CVE-2017-2476, CVE-2017-2481)

Binary data 700033.prm

VendorProductVersionCPE
applesafaricpe:/a:apple:safari

Vendor	Product	Version	CPE
apple	safari		cpe:/a:apple:safari

References

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2367

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2376

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2378

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2385

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2386

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2389

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2394

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2395

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2396

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2405

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2415

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2419

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2424

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2433

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2442

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2444

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2445

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2446

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2447

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2453

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2454

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2455

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2459

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2460

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2464

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2465

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2466

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2468

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2469

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2470

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2471

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2475

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2476

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2481

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2490

support.apple.com/en-us/HT207600

support.apple.com/en-us/HT207601

support.apple.com/en-us/HT207602

support.apple.com/en-us/HT207617

threatpost.com/apple-fixes-223-vulnerabilities-across-macos-ios-safari/124599

JSON

Related for 700033.PRM