icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

Safari < 6.0.3 Multiple Vulnerabilities

High

Synopsis

The remote host contains a web browser that is affected by several vulnerabilities.

Description

The remote host has Safari installed. Versions of Safari earlier than 6.0.3 are reportedly affected by several issues :

- Multiple memory corruption issues existed in WebKit. These issues were addressed through improved memory handling. (CVE-2012-2824, CVE-2012-2857, CVE-2013-0948, CVE-2013-0949, CVE-2013-0950, CVE-2013-0951, CVE-2013-0952, CVE-2013-0953, CVE-2013-0954, CVE-2013-0955, CVE-2013-0956, CVE-2013-0958, CVE-2013-0959, CVE-2013-0960, CVE-2013-0961) - A cross-site scripting issue existed in the handling of frame elements. This issue was addressed through improved origin tracking. (CVE-2012-2889) - A cross-site scripting issue existed in the handling of content pasted from a different origin. This issue was addressed through additional validation of pasted content. (CVE-2013-0962)

Solution

Upgrade to Safari 6.0.3 or later.