Lucene search

Tenable8048.PRM

HistoryNov 11, 2013 - 12:00 a.m.

Safari < 6.1 Multiple Security Vulnerabilities

2013-11-1100:00:00

Tenable

www.tenable.com

The remote host has Safari installed. Versions of Safari earlier than 6.1 are reportedly affected by the following vulnerabilities :

A bounds-checking issue exists related to handling XML files. (CVE-2013-1036)
Multiple memory corruption vulnerabilities exist in WebKit that could lead to unexpected program termination or arbitrary code execution. (CVE-2013-1037, CVE-2013-1038, CVE-2013-1039, CVE-2013-1040, CVE-2013-1041, CVE-2013-1042, CVE-2013-1043, CVE-2013-1044, CVE-2013-1045, CVE-2013-1046, CVE-2013-1047, CVE-2013-2842, CVE-2013-5125, CVE-2013-5126, CVE-2013-5127, CVE-2013-5128)
An error exists related to URL handling that could lead to information disclosure. (CVE-2013-2848)
A cross-site scripting issue exists in WebKit’s handling of URLs and drag-and-drop operations. (CVE-2013-5129, CVE-2013-5131)
Using ‘Web Inspector’ could negate ‘Private Browsing’ protections leading to information disclosure. (CVE-2013-5130)

Binary data 8048.prm

VendorProductVersionCPE
applesafaricpe:/a:apple:safari

Vendor	Product	Version	CPE
apple	safari		cpe:/a:apple:safari

References

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1036

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1037

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1038

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1039

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1040

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1041

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1042

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1043

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1044

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1045

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1046

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1047

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2842

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2848

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5125

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5126

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5127

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5128

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5129

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5130

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5131

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7127

lists.apple.com/archives/security-announce/2013/Oct/msg00003.html

support.apple.com/kb/HT6000

Related for 8048.PRM