Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusTenable8209.PRM
HistoryApr 10, 2014 - 12:00 a.m.

Safari < 6.1.3 / 7.0.3 Multiple Vulnerabilities

2014-04-1000:00:00
Tenable
www.tenable.com
13

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.301 Low

EPSS

Percentile

97.0%

JSON

The remote host has Safari installed that is older than 6.1.3 or 7.0.3, and is thus unpatched for the following WebKit vulnerabilities :

  • Unspecified errors exist that could allow memory corruption, application crashes and possibly arbitrary code execution. (CVE-2013-2871, CVE-2013-2926, CVE-2013-2928, CVE-2013-6625, CVE-2014-1289, CVE-2014-1290, CVE-2014-1291, CVE-2014-1292, CVE-2014-1293, CVE-2014-1294, CVE-2014-1298, CVE-2014-1299, CVE-2014-1300, CVE-2014-1301, CVE-2014-1302, CVE-2014-1303, CVE-2014-1304, CVE-2014-1305, CVE-2014-1307, CVE-2014-1308, CVE-2014-1309, CVE-2014-1310, CVE-2014-1311, CVE-2014-1312, CVE-2014-1313, CVE-2014-1713)
  • An error exists related to IPC messages and ‘WebProcess’ that could allow an attacker to read arbitrary files. (CVE-2014-1297)
Binary data 8209.prm
VendorProductVersionCPE
applesafaricpe:/a:apple:safari

References

Related

securityvulns 12
nessus 18
openvas 11
prion 27
cvelist 27
nvd 27
cve 27
thn 1
mageia 1
chrome 1
freebsd 1
debiancve 5
ubuntucve 19
seebug 10
zdi 4
checkpoint_advisories 1
threatpost 3
exploitpack 1
zdt 1
exploitdb 1
suse 1
securityvulns
securityvulns
Apple Safari multiple security vulnerabilities
2014-04-03 00:00:00
APPLE-SA-2014-04-01-1 Safari 6.1.3 and Safari 7.0.3
2014-04-03 00:00:00
Apple iOS multiple security vulnerabilities
2014-05-04 00:00:00
nessus
nessus
Mac OS X : Apple Safari < 6.1.3 / 7.0.3 Multiple Vulnerabilities
2014-04-02 00:00:00
Apple TV < 6.1.1 Multiple Vulnerabilities
2014-05-29 00:00:00
Apple iTunes < 12.0.1 Multiple Vulnerabilities (uncredentialed check)
2014-10-21 00:00:00
openvas
openvas
Apple Safari Multiple Memory Corruption Vulnerabilities-02 (Apr 2014) - Mac OS X
2014-04-07 00:00:00
Apple Safari Multiple Memory Corruption Vulnerabilities-01 (Apr 2014) - Mac OS X
2014-04-07 00:00:00
Google Chrome Multiple Vulnerabilities-02 (Oct 2013) - Linux
2013-10-23 00:00:00
prion
prion
Memory corruption
2014-03-14 10:55:00
Memory corruption
2014-03-14 10:55:00
Memory corruption
2014-03-14 10:55:00
cvelist
cvelist
CVE-2014-1290
2014-03-14 10:00:00
CVE-2014-1291
2014-03-14 10:00:00
CVE-2014-1292
2014-03-14 10:00:00
nvd
nvd
CVE-2014-1291
2014-03-14 10:55:06
CVE-2014-1293
2014-03-14 10:55:06
CVE-2014-1289
2014-03-14 10:55:06
cve
cve
CVE-2014-1292
2014-03-14 10:55:06
CVE-2014-1294
2014-03-14 10:55:06
CVE-2014-1290
2014-03-14 10:55:06
thn
thn
Update Your Safari Browser to Patch Two Dozen of Critical Vulnerabilities
2014-04-02 22:43:00
mageia
mageia
Updated chromium-browser-stable packages fix multiple vulnerabilities
2013-11-09 22:58:53
chrome
chrome
Stable Channel Update
2013-10-15 00:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2013-10-15 00:00:00
debiancve
debiancve
CVE-2013-6625
2013-11-13 15:55:00
CVE-2013-2928
2013-10-16 20:55:00
CVE-2013-2926
2013-10-16 20:55:00
ubuntucve
ubuntucve
CVE-2013-6625
2013-11-13 00:00:00
CVE-2014-1298
2014-04-02 00:00:00
CVE-2014-1299
2014-04-02 00:00:00
seebug
seebug
WebKit内存破坏漏洞(CVE-2014-1298)
2014-04-04 00:00:00
WebKit内存破坏漏洞(CVE-2014-1299)
2014-04-04 00:00:00
WebKit内存破坏漏洞(CVE-2014-1313)
2014-04-04 00:00:00
zdi
zdi
Apple Mobile Safari isindex Use-After-Free Remote Code Execution Vulnerability
2014-04-03 00:00:00
(Pwn2Own) Apple Safari Heap Buffer Overflow Remote Code Execution Vulnerability
2014-04-11 00:00:00
(Pwn2Own) Google Chrome Blink Use-After-Free Remote Code Execution Vulnerability
2014-04-11 00:00:00
checkpoint_advisories
checkpoint_advisories
Google Chrome locationAttributeSetter Use After Free (CVE-2014-1713)
2014-09-11 00:00:00
threatpost
threatpost
Apple Fixes More Than 25 Flaws in Safari
2014-04-02 07:20:27
Google Fixes Three High-Risk Flaws in Chrome
2013-10-15 13:37:29
Google Patches Four Pwn2Own Bugs in Chrome 33
2014-03-17 11:24:53
exploitpack
exploitpack
WebKitGTK 2.1.2 (Ubuntu 14.04) - Heap based Buffer Overflow
2017-08-19 00:00:00
zdt
zdt
WebKitGTK 2.1.2 (Ubuntu 14.04) - Heap based Buffer Overflow Exploit
2018-03-01 00:00:00
exploitdb
exploitdb
WebKitGTK 2.1.2 (Ubuntu 14.04) - Heap based Buffer Overflow
2017-08-19 00:00:00
suse
suse
chromium: 31.0.1650.57 version update (important)
2013-11-27 20:04:13

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.301 Low

EPSS

Percentile

97.0%

JSON
Related for 8209.PRM
securityvulns12nessus18openvas11prion27cvelist27nvd27cve27thn1mageia1chrome1freebsd1debiancve5ubuntucve19seebug10zdi4checkpoint_advisories1threatpost3exploitpack1zdt1exploitdb1suse1