This script is Copyright (C) 2013-2015 Tenable Network Security, Inc.
The remote host contains a web browser that is affected by several
The version of Apple Safari installed on the remote Mac OS X 10.7 or
10.8 host is earlier than 6.1. It is, therefore, potentially affected
by several issues :
- A bounds-checking issue exists related to handling XML
- Multiple memory corruption vulnerabilities exist in
WebKit that could lead to unexpected program termination
or arbitrary code execution. (CVE-2013-1037,
CVE-2013-1038, CVE-2013-1039, CVE-2013-1040,
CVE-2013-1041, CVE-2013-1042, CVE-2013-1043,
CVE-2013-1044, CVE-2013-1045, CVE-2013-1046,
CVE-2013-1047, CVE-2013-2842, CVE-2013-5125,
CVE-2013-5126, CVE-2013-5127, CVE-2013-5128)
- An error exists related to URL handling that could lead
to information disclosure. (CVE-2013-2848)
- A cross-site scripting issue exists in WebKit's handling
of URLs and drag-and-drop operations. (CVE-2013-5129,
- Using 'Web Inspector' could negate 'Private Browsing'
protections leading to information disclosure.
- An error exists related to the 'Reopen All Windows
from Last Session' feature that could allow a local
attacker to obtain plaintext user ID and password
information from the 'LastSession.plist' file.
See also :
Upgrade to Apple Safari 6.1 or later.
Risk factor :
Medium / CVSS Base Score : 6.8
CVSS Temporal Score : 5.9
Public Exploit Available : false
Family: MacOS X Local Security Checks
Nessus Plugin ID: 70563 ()
Bugtraq ID: 60067600736253762539625416255162553625546255662557625586255962560625636256562567625686256962570625716328964409
CVE ID: CVE-2013-1036CVE-2013-1037CVE-2013-1038CVE-2013-1039CVE-2013-1040CVE-2013-1041CVE-2013-1042CVE-2013-1043CVE-2013-1044CVE-2013-1045CVE-2013-1046CVE-2013-1047CVE-2013-2842CVE-2013-2848CVE-2013-5125CVE-2013-5126CVE-2013-5127CVE-2013-5128CVE-2013-5129CVE-2013-5130CVE-2013-5131CVE-2013-7127
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.