Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2010 Greenbone AGOPENVAS:1361412562310901138
HistoryAug 02, 2010 - 12:00 a.m.

Apple Safari Multiple Vulnerabilities (Jul 2010)

2010-08-0200:00:00
Copyright (C) 2010 Greenbone AG
plugins.openvas.org
13

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

9.1

Confidence

High

EPSS

0.335

Percentile

97.1%

JSON

Apple Safari Web Browser is prone to multiple vulnerabilities.

# SPDX-FileCopyrightText: 2010 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

CPE = "cpe:/a:apple:safari";

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.901138");
  script_version("2024-02-19T05:05:57+0000");
  script_tag(name:"last_modification", value:"2024-02-19 05:05:57 +0000 (Mon, 19 Feb 2024)");
  script_tag(name:"creation_date", value:"2010-08-02 12:38:17 +0200 (Mon, 02 Aug 2010)");
  script_cve_id("CVE-2010-1778", "CVE-2010-1780", "CVE-2010-1783", "CVE-2010-1782",
                "CVE-2010-1785", "CVE-2010-1784", "CVE-2010-1786", "CVE-2010-1788",
                "CVE-2010-1787", "CVE-2010-1790", "CVE-2010-1789", "CVE-2010-1792",
                "CVE-2010-1791", "CVE-2010-1793", "CVE-2010-1796");
  script_tag(name:"cvss_base", value:"9.3");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_name("Apple Safari Multiple Vulnerabilities (Jul 2010)");
  script_xref(name:"URL", value:"http://support.apple.com/kb/HT4276");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/42020");
  script_xref(name:"URL", value:"http://lists.apple.com/archives/security-announce/2010/Jul/msg00001.html");

  script_tag(name:"qod_type", value:"registry");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2010 Greenbone AG");
  script_family("General");
  script_dependencies("secpod_apple_safari_detect_win_900003.nasl");
  script_mandatory_keys("AppleSafari/Version");

  script_tag(name:"impact", value:"Successful exploitation may results in information disclosure, remote code
  execution, denial of service, or other consequences.");

  script_tag(name:"affected", value:"Apple Safari version prior to 5.0.1 (5.33.17.8) on Windows.");

  script_tag(name:"insight", value:"Please see the references for more information about the vulnerabilities.");

  script_tag(name:"solution", value:"Upgrade to Apple Safari version 5.0.1 or later.");

  script_tag(name:"summary", value:"Apple Safari Web Browser is prone to multiple vulnerabilities.");

  script_tag(name:"solution_type", value:"VendorFix");

  exit(0);
}

include("version_func.inc");
include("host_details.inc");

if(!infos = get_app_version_and_location(cpe:CPE, exit_no_version:TRUE))
  exit(0);

vers = infos["version"];
path = infos["location"];

if(version_is_less(version:vers, test_version:"5.33.17.8")) {
  report = report_fixed_ver(installed_version:vers, fixed_version:"Safari 5.0.1 (5.33.17.8)", install_path:path);
  security_message(port:0, data:report);
  exit(0);
}

exit(99);

Related

securityvulns 6
nessus 23
openvas 32
freebsd 3
oraclelinux 1
redhat 1
fedora 8
debiancve 15
cve 15
prion 15
veracode 11
ubuntucve 21
cvelist 15
nvd 15
zdi 4
checkpoint_advisories 1
seebug 2
gentoo 1
osv 1
debian 2
kitploit 1
securityvulns
securityvulns
Apple Webkit / Safari multiple security vulnerabilities
2010-08-14 00:00:00
About the security content of Safari 5.0.1 and Safari 4.1.1
2010-08-08 00:00:00
ZDI-10-144: Apple Webkit Rendering Counter Remote Code Execution Vulnerability
2010-08-11 00:00:00
nessus
nessus
Safari < 5.0.1 Multiple Vulnerabilities
2010-07-28 00:00:00
Mac OS X : Apple Safari < 5.0.1 / 4.1.1
2010-07-28 00:00:00
Safari < 4.1.1 / 5.0.1 Multiple Vulnerabilities
2010-07-28 00:00:00
openvas
openvas
Apple Safari Multiple Vulnerabilities - July 10
2010-08-02 00:00:00
FreeBSD Ports: webkit-gtk2
2010-10-10 00:00:00
FreeBSD Ports: webkit-gtk2
2010-10-10 00:00:00
freebsd
freebsd
webkit-gtk2 -- Multiple vulnerabilities
2010-09-07 00:00:00
webkit-gtk2 -- Multiple vulnerabilities
2010-12-28 00:00:00
Webkit-gtk2 -- Multiple Vulnabilities
2010-10-01 00:00:00
oraclelinux
oraclelinux
webkitgtk security update
2011-02-10 00:00:00
redhat
redhat
(RHSA-2011:0177) Moderate: webkitgtk security update
2011-01-25 00:00:00
fedora
fedora
[SECURITY] Fedora 12 Update: webkitgtk-1.2.4-1.fc12
2010-09-21 01:43:18
[SECURITY] Fedora 13 Update: webkitgtk-1.2.4-1.fc13
2010-09-15 05:40:48
[SECURITY] Fedora 13 Update: webkitgtk-1.2.6-1.fc13
2011-01-07 20:01:55
debiancve
debiancve
CVE-2010-1778
2010-07-30 20:30:00
CVE-2010-1784
2010-07-30 20:30:00
CVE-2010-1787
2010-07-30 20:30:00
cve
cve
CVE-2010-1778
2010-07-30 20:30:01
CVE-2010-1784
2010-07-30 20:30:02
CVE-2010-1787
2010-07-30 20:30:02
prion
prion
Cross site scripting
2010-07-30 20:30:00
Design/Logic Flaw
2010-07-30 20:30:00
Design/Logic Flaw
2010-07-30 20:30:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:53:15
Arbitrary Code Execution
2020-04-10 00:53:14
Use-after-free
2020-04-10 00:53:17
ubuntucve
ubuntucve
CVE-2010-1784
2010-07-30 00:00:00
CVE-2010-1778
2010-07-30 00:00:00
CVE-2010-1793
2010-07-30 00:00:00
cvelist
cvelist
CVE-2010-1783
2010-07-30 20:00:00
CVE-2010-1784
2010-07-30 20:00:00
CVE-2010-1778
2010-07-30 20:00:00
nvd
nvd
CVE-2010-1778
2010-07-30 20:30:01
CVE-2010-1784
2010-07-30 20:30:02
CVE-2010-1780
2010-07-30 20:30:01
zdi
zdi
Apple Webkit SVG Floating Text Element Remote Code Execution Vulnerability
2010-08-11 00:00:00
Apple Webkit Rendering Counter Remote Code Execution Vulnerability
2010-08-09 00:00:00
Apple Webkit SVG First-Letter Style Remote Code Execution Vulnerability
2010-08-05 00:00:00
checkpoint_advisories
checkpoint_advisories
Apple Safari WebKit Rendering Counter Code Execution (CVE-2010-1784)
2010-11-08 00:00:00
seebug
seebug
Apple Safari Webkit SVG First-Letter样式远程代码执行漏洞
2010-08-10 00:00:00
Apple Safari Webkit foreignObject元素释放后使用漏洞
2010-08-10 00:00:00
gentoo
gentoo
Multiple packages, Multiple vulnerabilities fixed in 2011
2014-12-11 00:00:00
osv
osv
webkit - several
2011-03-10 00:00:00
debian
debian
[SECURITY] [DSA 2188-1] webkit security update
2011-03-10 12:16:11
[SECURITY] [DSA 2188-1] webkit security update
2011-03-10 12:16:11
kitploit
kitploit
Radamsa - A General-Purpose Fuzzer
2024-03-25 11:30:00

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

9.1

Confidence

High

EPSS

0.335

Percentile

97.1%

JSON
Related for OPENVAS:1361412562310901138
securityvulns6nessus23openvas32freebsd3oraclelinux1redhat1fedora8debiancve15cve15prion15veracode11ubuntucve21cvelist15nvd15zdi4checkpoint_advisories1seebug2gentoo1osv1debian2kitploit1