Safari Security Vulnerabilities and Issues — Safari CVE List

Lucene search

AppleSafari

5 matches found

CVE•added 2011/12/07 7:55 p.m.•128 views

CVE-2010-5070

The JavaScript implementation in Apple Safari 4 does not properly restrict the set of values contained in the object returned by the getComputedStyle method, which allows remote attackers to obtain sensitive information about visited web pages by calling this method, a different vulnerability than ...

5CVSS5.3AI score0.00732EPSS

CVE•added 2011/12/13 9:55 p.m.•58 views

CVE-2011-3908

Google Chrome before 16.0.912.63 does not properly parse SVG documents, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.

5CVSS6.1AI score0.0234EPSS

CVE•added 2011/12/13 9:55 p.m.•57 views

CVE-2011-3913

Use-after-free vulnerability in Google Chrome before 16.0.912.63 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to Range handling.

7.5CVSS7AI score0.0229EPSS

CVE•added 2011/12/13 9:55 p.m.•49 views

CVE-2011-3909

The Cascading Style Sheets (CSS) implementation in Google Chrome before 16.0.912.63 on 64-bit platforms does not properly manage property arrays, which allows remote attackers to cause a denial of service (memory corruption) via unspecified vectors.

5CVSS6AI score0.0234EPSS

CVE•added 2011/12/07 7:55 p.m.•42 views

CVE-2011-4692

WebKit, as used in Apple Safari 5.1.1 and earlier and Google Chrome 15 and earlier, does not prevent capture of data about the time required for image loading, which makes it easier for remote attackers to determine whether an image exists in the browser cache via crafted JavaScript code, as demons...

5CVSS5.7AI score0.0023EPSS