10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.02 Low
EPSS
Percentile
88.8%
The remote host has Safari installed.
Versions of Safari earlier than 5.1.7 are reportedly affected by several issues :
Two unspecified errors that can allow malicious sites to perform cross-site scripting attacks. (CVE-2011-3046, CVE-2011-3056)
An unspecified memory corruption error exists that can allows malicious sites to crash the application or potentially execute arbitrary code. (CVE-2012-0672)
A state-tracking issue exists that can allow malicious sites to populate HTML form values of other sites with arbitrary data. (CVE-2012-0676)
Binary data 6483.prm
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3046
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3056
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0672
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0676
lists.apple.com/archives/security-announce/2012/May/msg00002.html
support.apple.com/kb/HT5282