|
Apple Safari Multiple Vulnerabilities
|
|
Secunia Advisory:
|
SA36269
|
|
|
Release Date:
|
2009-08-12
|
|
Popularity:
|
2,615 views
|
|
|
Critical:
|
Highly critical
|
|
Impact:
|
Spoofing
Manipulation of data
Exposure of sensitive information
System access
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| Software: | Apple Safari 4.x
|
|
|
Binary Analysis:
|
BA807 :: Available for 1 Credit 
|
|
|
Secunia CVSS-2 Score:
|
Available in Secunia business solutions
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities
|
|
| Advisory Content (Page 1 of 3) | [ 1 ] [ 2 ] [ 3 ] | |
|
Description:
Some vulnerabilities and a weakness have been reported in Apple Safari, which can be exploited by malicious people to manipulate certain data, disclose sensitive information, conduct spoofing attacks, or compromise a user's system.
1) An error within font glyph rendering in CoreGraphics can be exploited to cause a heap-based buffer overflow e.g. when a user visits a specially crafted web site.
Successful exploitation may allow execution of arbitrary code.
2) A boundary error in ImageIO when processing EXIF metadata can be exploited to cause a buffer overflow and potentially execute arbitrary code via a specially crafted image.
3) An error in the Top Sites feature can be exploited to place a web site in the Top Sites view when a user visits a specially crafted web page.
4) An error in WebKit within the parsing of floating point numbers can be exploited to cause buffer overflows when a user visits a specially crafted web page.
Successful exploitation may allow execution of arbitrary code.
5) An error in WebKit in the handling of the "pluginspage" attribute of the "embed" element can be exploited to reference file URLs. This can be exploited to disclose sensitive information when a user clicks on "Go" in the dialog for unknown plug-in types.
6) An error in the handling of IDN (International Domain Name) support can be exploited to spoof a URL via e.g. a domain containing certain international characters that resemble other commonly used characters.
Change Page:
[ 1 ] [ 2 ] [ 3 ]
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
