|
|
RETIRED: Apple Safari Prior to 5.0.3 and 4.1.3 Multiple Security Vulnerabilities
Safari is prone to multiple security vulnerabilities that have been addressed in Apple security advisory APPLE-SA-2010-11-18-1. These issues affect versions prior to Safari 5.0.3 and 4.1.3 running on Apple Mac OS X, Windows 7, XP, and Vista. Attackers can exploit these issues by enticing an unsuspecting user into visiting a malicious webpage. Successful attacks may result in information disclosure, remote code execution, denial of service, or other consequences. This BID is being retired. The following individual records exist to better document the issues: 44950 WebKit String Integer Overflow Remote Code Execution Vulnerability 44952 WebKit Insufficient Entropy Random Number Generator Weakness 44953 WebKit 'History' Object Same Origin Validation Bypass Vulnerability 44954 WebKit HTML 'Link' DNS Pre-Fetching Security Bypass Vulnerability 44955 WebKit Edit Command Remote Code Execution Vulnerability 44956 WebKit WebSockets Integer Overflow Remote Code Execution Vulnerability 44957 WebKit Inline Styling Command Remote Code Execution Vulnerability 44958 WebKit Element Attributes Use-After-Free Remote Code Execution Vulnerability 44959 WebKit (CVE-2010-3820) Editable Elements Remote Code Execution Vulnerability 44960 WebKit 'Text' Objects Integer Overflow Remote Code Execution Vulnerability 44961 WebKit (CVE-2010-3821) Cascading Style Sheets (CSS) Remote Code Execution Vulnerability 44962 WebKit (CVE-2010-3822) CSS Counter Styles Remote Code Execution Vulnerability 44963 WebKit Cascading Style Sheet Boxes Remote Code Execution Vulnerability 44964 WebKit Element Scrollbards Use-After-Free Remote Code Execution Vulnerability 44965 WebKit Inline Text Boxes Remote Code Execution Vulnerability 44967 WebKit Cascading Style Sheet(CSS) 3D Transforms Remote Code Execution Vulnerability 44969 WebKit Geolocation Objects Use After Free Remote Code Execution Vulnerability 44970 WebKit SVG Document Use-After-Free Remote Code Execution Vulnerability 44971 WebKit Colors in SVG Documents Remote Code Execution Vulnerability |
|
Privacy Statement |