Apple Safari Multiple Vulnerabilities Network Vulnerability

Summary

The host is running Apple Safari web browser and is prone to multiple vulnerabilities.

Impact

Successful exploitation will let the attacker execute arbitrary codes and can cause XSS, Buffer Overflow, JavaScript code injection and denial of service in the context of an affected system. Impact level: System/Application

Solution

Upgrade to Safari version 3.2.3 or later http://www.apple.com/safari/download

Insight

Browser faces input validation error while handing 'feed:' protocol based URLs which causes injection of arbitrary codes.

Affected

Apple Safari version prior to 3.2.3 and 4 Beta on Windows

References

http://lists.apple.com/archives/security-announce/2009/May/msg00000.html
http://lists.apple.com/archives/security-announce/2009/May/msg00001.html
http://secunia.com/advisories/35056
http://www.vupen.com/english/advisories/2009/1298

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-0162

CVSS	Base Score: 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N

Related Vulnerabilities

Apple Safari Multiple Vulnerabilities
Apache Tomcat 'sendfile' Request Attributes Information Disclosure Vulnerability
Adobe ColdFusion Multiple Cross Site Scripting Vulnerabilities
Allegro RomPager HTTP Referer Header Cross Site Scripting Vulnerability
Adobe ColdFusion Multiple Path Disclosure Vulnerabilities

Take action and discover your vulnerabilities