Lucene search
HistoryMar 11, 2011 - 10:55 p.m.
CVE-2011-0169
CVSS2
2.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:N/I:P/A:N
AI Score
5.3
Confidence
High
EPSS
0.003
Percentile
69.0%
WebKit in Apple Safari before 5.0.4, when the Web Inspector is used, does not properly handle the window.console._inspectorCommandLineAPI property, which allows user-assisted remote attackers to bypass the Same Origin Policy and conduct cross-site scripting (XSS) attacks via a crafted web site.
Affected configurations
Node
applesafariRange≤5.0.3
ORapplesafariMatch1.0
ORapplesafariMatch1.0beta
ORapplesafariMatch1.0beta2
ORapplesafariMatch1.0.0
ORapplesafariMatch1.0.0b1
ORapplesafariMatch1.0.0b2
ORapplesafariMatch1.0.1
ORapplesafariMatch1.0.2
ORapplesafariMatch1.0.3
ORapplesafariMatch1.0.385.8
ORapplesafariMatch1.0.385.8.1
ORapplesafariMatch1.1
ORapplesafariMatch1.1.0
ORapplesafariMatch1.1.1
ORapplesafariMatch1.2
ORapplesafariMatch1.2.0
ORapplesafariMatch1.2.1
ORapplesafariMatch1.2.2
ORapplesafariMatch1.2.3
ORapplesafariMatch1.2.4
ORapplesafariMatch1.2.5
ORapplesafariMatch1.3
ORapplesafariMatch1.3.0
ORapplesafariMatch1.3.1
ORapplesafariMatch1.3.2
ORapplesafariMatch1.3.2312.5
ORapplesafariMatch1.3.2312.6
ORapplesafariMatch2
ORapplesafariMatch2.0
ORapplesafariMatch2.0.0
ORapplesafariMatch2.0.1
ORapplesafariMatch2.0.2
ORapplesafariMatch2.0.3
ORapplesafariMatch2.0.3417.8
ORapplesafariMatch2.0.3417.9
ORapplesafariMatch2.0.3417.9.2
ORapplesafariMatch2.0.3417.9.3
ORapplesafariMatch2.0.4
ORapplesafariMatch3
ORapplesafariMatch3.0
ORapplesafariMatch3.0.0
ORapplesafariMatch3.0.0b
ORapplesafariMatch3.0.1
ORapplesafariMatch3.0.1b
ORapplesafariMatch3.0.2
ORapplesafariMatch3.0.2b
ORapplesafariMatch3.0.3
ORapplesafariMatch3.0.3b
ORapplesafariMatch3.0.4
ORapplesafariMatch3.0.4b
ORapplesafariMatch3.1.0
ORapplesafariMatch3.1.0b
ORapplesafariMatch3.1.1
ORapplesafariMatch3.1.2
ORapplesafariMatch3.2.0
ORapplesafariMatch3.2.1
ORapplesafariMatch3.2.2
ORapplesafariMatch4.1
ORapplesafariMatch4.1.1
ORapplesafariMatch4.1.2
ORapplesafariMatch5.0
ORapplesafariMatch5.0.1
ORapplesafariMatch5.0.2
ORapplewebkit
| Vendor | Product | Version | CPE |
|---|---|---|---|
| apple | safari | * | cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:* |
| apple | safari | 1.0 | cpe:2.3:a:apple:safari:1.0:*:*:*:*:*:*:* |
| apple | safari | 1.0 | cpe:2.3:a:apple:safari:1.0:beta:*:*:*:*:*:* |
| apple | safari | 1.0 | cpe:2.3:a:apple:safari:1.0:beta2:*:*:*:*:*:* |
| apple | safari | 1.0.0 | cpe:2.3:a:apple:safari:1.0.0:*:*:*:*:*:*:* |
| apple | safari | 1.0.0b1 | cpe:2.3:a:apple:safari:1.0.0b1:*:*:*:*:*:*:* |
| apple | safari | 1.0.0b2 | cpe:2.3:a:apple:safari:1.0.0b2:*:*:*:*:*:*:* |
| apple | safari | 1.0.1 | cpe:2.3:a:apple:safari:1.0.1:*:*:*:*:*:*:* |
| apple | safari | 1.0.2 | cpe:2.3:a:apple:safari:1.0.2:*:*:*:*:*:*:* |
| apple | safari | 1.0.3 | cpe:2.3:a:apple:safari:1.0.3:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2011-0169
2011-03-11 22:00:00
prion
prion
Cross site scripting
2011-03-11 22:55:00
cve
cve
CVE-2011-0169
2011-03-11 22:55:03
ubuntucve
ubuntucve
CVE-2011-0169
2011-03-11 00:00:00
openvas
openvas
Apple Safari Webkit Multiple Vulnerabilities - March 2011
2011-03-22 00:00:00
Apple Safari Webkit Multiple Vulnerabilities (Mar 2011)
2011-03-22 00:00:00
Apple Safari Multiple Vulnerabilities - March 2011 (Mac OS X)
2011-08-12 00:00:00
nessus
nessus
Mac OS X : Apple Safari < 5.0.4
2011-03-10 00:00:00
Safari < 5.0.4 Multiple Vulnerabilities
2011-03-10 00:00:00
securityvulns
securityvulns
Apple WebKit / Safari / iTunes / libtiff / Google Chrome multiple security vulnerabilities
2011-03-16 00:00:00
About the security content of Safari 5.0.4
2011-03-15 00:00:00
CVSS2
2.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:N/I:P/A:N
AI Score
5.3
Confidence
High
EPSS
0.003
Percentile
69.0%
Related for NVD:CVE-2011-0169