Apple Safari Multiple Vulnerabilities Network Vulnerability

Summary

The host is running Apple Safari web browser and is prone to multiple vulnerabilities.

Impact

Successful exploitation will let the attacker execute arbitrary codes and can cause XSS, Buffer Overflow, JavaScript code injection and denial of service in the context of an affected system. Impact level: System/Application

Solution

Upgrade to Safari version 3.2.3 or later http://www.apple.com/safari/download

Insight

Browser faces input validation error while handing 'feed:' protocol based URLs which causes injection of arbitrary codes.

Affected

Apple Safari version prior to 3.2.3 and 4 Beta on Windows

References

http://lists.apple.com/archives/security-announce/2009/May/msg00000.html
http://lists.apple.com/archives/security-announce/2009/May/msg00001.html
http://secunia.com/advisories/35056
http://www.vupen.com/english/advisories/2009/1298

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-0162
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N

Related Vulnerabilities

3Com NBX VoIP NetSet Detection
Apache Tomcat 'sendfile' Request Attributes Information Disclosure Vulnerability
Apache Tomcat SecurityConstraints Security Bypass Vulnerability
An Image Gallery Multiple Cross-Site Scripting Vulnerability
Advanced Image Hosting Cross Site Scripting Vulnerability

Take action and discover your vulnerabilities