Support
Eng
òÕÓ
Company
Home
Services
Security Assessment
Website Security Audit
Network Penetration Testing
Solutions
DataCenter GreenZone
Web Application Security
Vulnerability Assessment
Intrusion Protection System
Documentation
News and Events
Register
|
LogIn
Knowledgebase
Downloads
Glossary
Ask a Question
Search:
Advanced search
Please enter a keyword or ID
SHALB.com
/
Security Knowledgebase
/
Network Security
/
MacOS X Local Security Checks
/ Mac OS X : Safari < 3.1.1
server monitoring
Mac OS X : Safari < 3.1.1
Article ID: 31992
Last updated: 27 Jan, 2009
Print
Email to friend
Views: 366
Posted: 22 Jan, 2009
by: Tech Pubs S.
Updated: 27 Jan, 2009
by: Tech Pubs S.
Mac OS X : Safari < 3.1.1
This script is Copyright (C) 2008 Tenable Network Security, Inc.
Family
MacOS X Local Security Checks
Plugin ID
31992
Bugtraq ID
28814
28815
CVE ID
CVE-2008-1025
CVE-2008-1026
Description:
Synopsis :
The remote host contains a web browser that is affected by several
issues.
Description :
The version of Safari installed on the remote host reportedly is
affected by several issues :
- A cross-site scripting vulnerability exists in WebKits
handling of URLs that contain a colon character in
the host name (CVE-2008-1025).
- A heap buffer overflow exists in WebKits handling of
JavaScript regular expressions (CVE-2008-1026).
See also :
http://support.apple.com/kb/HT1467
http://lists.apple.com/archives/security-announce/2008/Apr/msg00001.html
Solution :
Upgrade to Safari 3.1.1 or later.
Risk factor :
High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
This article was:
Helpful
|
Not Helpful
Prev
Next
Airport < 4.2
Mac OS X < 10.5.5
server monitoring
