Apple Safari Multiple Vulnerabilities - Oct 2012 (Mac OS X). This host is installed with Apple Safari web browser and is prone to multiple vulnerabilities. Successful exploitation will allow an attacker to disclose potentially sensitive information, bypass certain security restrictions, and compromise a user's system
Reporter | Title | Published | Views | Family All 199 |
---|---|---|---|---|
![]() | Apple Safari Multiple Vulnerabilities (Oct 2012) - Mac OS X | 1 Oct 201200:00 | – | openvas |
![]() | Apple iTunes Multiple Vulnerabilities - Sep 12 (Windows) | 17 Sep 201200:00 | – | openvas |
![]() | Apple iTunes Multiple Vulnerabilities (Sep 2012) - Windows | 17 Sep 201200:00 | – | openvas |
![]() | Google Chrome Multiple Vulnerabilities - 01 - (Jul 2012) - Windows | 24 Jul 201200:00 | – | openvas |
![]() | Google Chrome Multiple Vulnerabilities - 01 - (Jul 2012) - Mac OS X | 24 Jul 201200:00 | – | openvas |
![]() | Google Chrome Multiple Vulnerabilities - 01 - (Jul 2012) - Linux | 24 Jul 201200:00 | – | openvas |
![]() | FreeBSD Ports: chromium | 10 Aug 201200:00 | – | openvas |
![]() | Google Chrome Multiple Vulnerabilities(01) - July 12 (Windows) | 24 Jul 201200:00 | – | openvas |
![]() | FreeBSD Ports: chromium | 10 Aug 201200:00 | – | openvas |
![]() | Google Chrome Multiple Vulnerabilities(01) - July 12 (Mac OS X) | 24 Jul 201200:00 | – | openvas |
###############################################################################
# OpenVAS Vulnerability Test
# $Id: gb_apple_safari_mult_vuln_oct12_macosx.nasl 6018 2017-04-24 09:02:24Z teissa $
#
# Apple Safari Multiple Vulnerabilities - Oct 2012 (Mac OS X)
#
# Authors:
# Rachana Shetty <[email protected]>
#
# Copyright:
# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################
tag_impact = "Successful exploitation will allow attacker to disclose potentially
sensitive information, bypass certain security restrictions and compromise
a user's system.
Impact Level: System/Application";
tag_affected = "Apple Safari versions prior to 6.0.1";
tag_insight = "For more details about the vulnerabilities refer the reference section.";
tag_solution = "Upgrade to Apple Safari version 6.0.1 or later,
For updates refer to http://www.apple.com/safari/download/";
tag_summary = "This host is installed with Apple Safari web browser and is prone
to multiple vulnerabilities.";
if(description)
{
script_id(803032);
script_version("$Revision: 6018 $");
script_cve_id("CVE-2012-3713", "CVE-2012-3714", "CVE-2012-3715", "CVE-2011-3105",
"CVE-2012-2817", "CVE-2012-2818", "CVE-2012-2829", "CVE-2012-2831",
"CVE-2012-2842", "CVE-2012-2843", "CVE-2012-3598", "CVE-2012-3601",
"CVE-2012-3602", "CVE-2012-3606", "CVE-2012-3607", "CVE-2012-3612",
"CVE-2012-3613", "CVE-2012-3614", "CVE-2012-3616", "CVE-2012-3617",
"CVE-2012-3621", "CVE-2012-3622", "CVE-2012-3623", "CVE-2012-3624",
"CVE-2012-3632", "CVE-2012-3643", "CVE-2012-3647", "CVE-2012-3648",
"CVE-2012-3649", "CVE-2012-3651", "CVE-2012-3652", "CVE-2012-3654",
"CVE-2012-3657", "CVE-2012-3658", "CVE-2012-3659", "CVE-2012-3660",
"CVE-2012-3671", "CVE-2012-3672", "CVE-2012-3673", "CVE-2012-3675",
"CVE-2012-3676", "CVE-2012-3677", "CVE-2012-3684", "CVE-2012-3685",
"CVE-2012-3687", "CVE-2012-3688", "CVE-2012-3692", "CVE-2012-3699",
"CVE-2012-3700", "CVE-2012-3701", "CVE-2012-3702", "CVE-2012-3703",
"CVE-2012-3704", "CVE-2012-3705", "CVE-2012-3706", "CVE-2012-3707",
"CVE-2012-3708", "CVE-2012-3709", "CVE-2012-3710", "CVE-2012-3711",
"CVE-2012-3712");
script_bugtraq_id(55624, 55625, 55626, 53679, 54203, 54386,54680, 55534);
script_tag(name:"cvss_base", value:"9.3");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:C/I:C/A:C");
script_tag(name:"last_modification", value:"$Date: 2017-04-24 11:02:24 +0200 (Mon, 24 Apr 2017) $");
script_tag(name:"creation_date", value:"2012-10-01 12:01:34 +0530 (Mon, 01 Oct 2012)");
script_name("Apple Safari Multiple Vulnerabilities - Oct 2012 (Mac OS X)");
script_xref(name : "URL" , value : "http://support.apple.com/kb/HT5502");
script_xref(name : "URL" , value : "http://secunia.com/advisories/50577");
script_xref(name : "URL" , value : "http://lists.apple.com/archives/security-announce/2012/Sep/msg00005.html");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2012 Greenbone Networks GmbH");
script_family("General");
script_dependencies("macosx_safari_detect.nasl");
script_require_keys("AppleSafari/MacOSX/Version");
script_tag(name : "impact" , value : tag_impact);
script_tag(name : "affected" , value : tag_affected);
script_tag(name : "insight" , value : tag_insight);
script_tag(name : "solution" , value : tag_solution);
script_tag(name : "summary" , value : tag_summary);
script_tag(name:"qod_type", value:"package");
script_tag(name:"solution_type", value:"VendorFix");
exit(0);
}
include("version_func.inc");
osName = "";
osVer = "";
safVer = "";
## Get the OS name
osName = get_kb_item("ssh/login/osx_name");
if(!osName){
exit (0);
}
## Get the OS Version
osVer = get_kb_item("ssh/login/osx_version");
if(!osVer){
exit(0);
}
## Check for the Mac OS X and Mac OS X Server
if("Mac OS X" >< osName)
{
## Check the affected OS versions
if(version_is_equal(version:osVer, test_version:"10.7.5")||
version_is_equal(version:osVer, test_version:"10.8")||
version_is_equal(version:osVer, test_version:"10.8.1"))
{
safVer = get_kb_item("AppleSafari/MacOSX/Version");
if(!safVer){
exit(0);
}
## Grep for Apple Safari Versions prior to 6.0
if(version_is_less(version:safVer, test_version:"6.0.1")){
security_message(0);
}
}
}
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo