HomePentest-Tools.com Logo

Apple Safari Multiple Vulnerabilities-01 February17 CVE-2017-2359CVE-2017-2350CVE-2017-2362CVE-2017-2373CVE-2017-2354CVE-2017-2355CVE-2017-2356CVE-2017-2366CVE-2017-2369CVE-2017-2363CVE-2017-2364CVE-2017-2365

Severity
CVSSv3 Score
8.8
Vulnerability description

Apple Safari is prone to multiple vulnerabilities.

Risk description

Multiple flaws exist due to: - A state management issue in the address bar. - A prototype access issue in WebKit - Multiple memory corruption issues in WebKit. - A memory initialization issue in WebKit. - Multiple validation issues existed in the handling of page loading in WebKit. - A validation issue existed in variable handling in WebKit. Successful exploitation will allow remote attackers to spoof the address bar, bypass security restrictions and obtain sensitive information, execute arbitrary code or cause a denial of service.

Recommendation

Upgrade to Apple Safari version 10.0.3 or later.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Feb 20, 2017
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available