Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2012-2019 and is owned by Tenable, Inc. or an Affiliate thereof.MACOSX_SAFARI6_0_2.NASL
HistoryNov 02, 2012 - 12:00 a.m.

Mac OS X : Apple Safari < 6.0.2 Multiple Vulnerabilities

2012-11-0200:00:00
This script is Copyright (C) 2012-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
28
JSON

The version of Apple Safari installed on the remote Mac OS X host is earlier than 6.0.2. It is, therefore, potentially affected by several issues :

  • A time-of-check-to-time-of-use issue in the handling of JavaScript array in WebKit could lead to arbitrary, remote code execution. (CVE-2012-3748)

  • A use-after-free issue in the handling of SVG images in WebKit code could lead to arbitrary, remote code execution. (CVE-2012-5112)

#
# (C) Tenable Network Security, Inc.
#

include("compat.inc");

if (description)
{
  script_id(62802);
  script_version("1.14");
  script_cvs_date("Date: 2019/12/04");

  script_cve_id("CVE-2012-3748", "CVE-2012-5112");
  script_bugtraq_id(55867, 56362);
  script_xref(name:"EDB-ID", value:"28081");

  script_name(english:"Mac OS X : Apple Safari < 6.0.2 Multiple Vulnerabilities");
  script_summary(english:"Check the Safari SourceVersion");

  script_set_attribute(attribute:"synopsis", value:
"The remote host contains a web browser that is affected by several
vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The version of Apple Safari installed on the remote Mac OS X host is
earlier than 6.0.2. It is, therefore, potentially affected by several
issues :

  - A time-of-check-to-time-of-use issue in the handling 
    of JavaScript array in WebKit could lead to arbitrary,
    remote code execution. (CVE-2012-3748)

  - A use-after-free issue in the handling of SVG images
    in WebKit code could lead to arbitrary, remote code
    execution. (CVE-2012-5112)");
  script_set_attribute(attribute:"see_also", value:"http://www.zerodayinitiative.com/advisories/ZDI-13-009/");
  script_set_attribute(attribute:"see_also", value:"http://support.apple.com/kb/HT5568");
  script_set_attribute(attribute:"see_also", value:"http://lists.apple.com/archives/security-announce/2012/Nov/msg00001.html");
  script_set_attribute(attribute:"see_also", value:"http://www.securityfocus.com/archive/1/524579/30/0/threaded");
  script_set_attribute(attribute:"solution", value:
"Upgrade to Apple Safari 6.0.2 or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:H/RL:OF/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2012-5112");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploited_by_malware", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2012/10/10");
  script_set_attribute(attribute:"patch_publication_date", value:"2012/11/01");
  script_set_attribute(attribute:"plugin_publication_date", value:"2012/11/02");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:apple:safari");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"MacOS X Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2012-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("macosx_Safari31.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/MacOSX/Version", "MacOSX/Safari/Installed");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
os = get_kb_item("Host/MacOSX/Version");
if (!os) audit(AUDIT_OS_NOT, "Mac OS X");

if (!ereg(pattern:"Mac OS X 10\.[78]([^0-9]|$)", string:os)) audit(AUDIT_OS_NOT, "Mac OS X 10.7 / 10.8");


get_kb_item_or_exit("MacOSX/Safari/Installed");
path = get_kb_item_or_exit("MacOSX/Safari/Path", exit_code:1);
version = get_kb_item_or_exit("MacOSX/Safari/Version", exit_code:1);

fixed_version = "6.0.2";

if (ver_compare(ver:version, fix:fixed_version, strict:FALSE) == -1)
{
  if (report_verbosity > 0)
  {
    report = 
      '\n  Path              : ' + path +
      '\n  Installed version : ' + version + 
      '\n  Fixed version     : ' + fixed_version + '\n';
    security_hole(port:0, extra:report);
  }
  else security_hole(0);
}
else audit(AUDIT_INST_PATH_NOT_VULN, "Safari", version, path);
VendorProductVersionCPE
applesafaricpe:/a:apple:safari

Related

nessus 12
openvas 12
securityvulns 11
cvelist 3
freebsd 1
debiancve 2
cve 3
chrome 2
prion 3
ubuntucve 3
seebug 1
zdi 1
checkpoint_advisories 1
exploitpack 1
fedora 2
exploitdb 1
gentoo 1
nessus
nessus
Safari < 6.0.2 Multiple Vulnerabilities
2012-11-26 00:00:00
Mac OS X : Safari < 6.0.2 Multiple Vulnerabilities
2012-11-26 00:00:00
Apple iOS < 6.0.1 Multiple Vulnerabilities
2012-11-06 00:00:00
openvas
openvas
Apple Safari Multiple Vulnerabilities (APPLE-SA-2012-09-19-3)
2012-11-02 00:00:00
Apple Safari Multiple Vulnerabilities (APPLE-SA-2012-09-19-3)
2012-11-02 00:00:00
FreeBSD Ports: chromium
2012-10-13 00:00:00
securityvulns
securityvulns
APPLE-SA-2012-11-01-2 Safari 6.0.2
2012-11-05 00:00:00
WebKit / Appl Safari / Google Chrome security vulnerabilities
2013-09-09 00:00:00
Apple iOS 6.0 multiple security vulnerabilities
2012-11-05 00:00:00
cvelist
cvelist
CVE-2012-5112
2012-10-11 10:00:00
CVE-2012-3748
2012-11-03 17:00:00
CVE-2012-5376
2012-10-11 10:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2012-10-10 00:00:00
debiancve
debiancve
CVE-2012-5112
2012-10-11 10:51:00
CVE-2012-5376
2012-10-11 10:51:00
cve
cve
CVE-2012-5112
2012-10-11 10:51:00
CVE-2012-3748
2012-11-03 17:55:00
CVE-2012-5376
2012-10-11 10:51:00
chrome
chrome
Stable Channel Update
2012-10-10 00:00:00
Stable Channel Update for Chrome OS
2012-10-11 00:00:00
prion
prion
Design/Logic Flaw
2012-10-11 10:51:00
Race condition
2012-11-03 17:55:00
Design/Logic Flaw
2012-10-11 10:51:00
ubuntucve
ubuntucve
CVE-2012-5112
2012-10-11 00:00:00
CVE-2012-3748
2012-11-03 00:00:00
CVE-2012-5376
2012-10-11 00:00:00
seebug
seebug
Apple Safari 6.0.1 for iOS 6.0 and OS X 10.7/8 - Heap Buffer Overflow
2014-07-01 00:00:00
zdi
zdi
(Mobile Pwn2Own) Apple Safari shiftCount/splice Remote Code Execution Vulnerability
2013-02-01 00:00:00
checkpoint_advisories
checkpoint_advisories
Apple Safari Heap Buffer Overflow (CVE-2012-3748)
2013-10-13 00:00:00
exploitpack
exploitpack
Apple Safari 6.0.1 for iOS 6.0 Apple Mac OSX 10.78 - Heap Buffer Overflow
2013-09-04 00:00:00
fedora
fedora
[SECURITY] Fedora 18 Update: webkitgtk3-1.10.2-1.fc18
2013-01-11 23:34:36
[SECURITY] Fedora 18 Update: webkitgtk-1.10.2-1.fc18
2013-01-11 23:34:36
exploitdb
exploitdb
Apple Safari 6.0.1 for iOS 6.0 / Apple Mac OSX 10.7/8 - Heap Buffer Overflow
2013-09-04 00:00:00
gentoo
gentoo
Chromium: Multiple vulnerabilities
2012-10-21 00:00:00
JSON
Related for MACOSX_SAFARI6_0_2.NASL
nessus12openvas12securityvulns11cvelist3freebsd1debiancve2cve3chrome2prion3ubuntucve3seebug1zdi1checkpoint_advisories1exploitpack1fedora2exploitdb1gentoo1