icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

Mac OS X : Safari < 6.0.5 Multiple Security Vulnerabilities

Medium

Synopsis

The remote host contains a web browser that is affected by multiple security vulnerabilities.

Description

The remote Mac OS X host has Safari installed.

Versions of Safari earlier than 6.0.5 are reportedly affected by the following vulnerabilities:

- Multiple cross-site scripting vulnerabilities (CVE-2013-1012, CVE-2013-1013)

- Multiple memory-corruption vulnerabilities exist that can be triggered by a specially crafted webpage. A remote attacker can exploit these issues to execute arbitrary code in in context of the user. (CVE-2013-1009, CVE-2013-1023)

Solution

Upgrade to Safari 6.0.5 or later.