Multiple unspecified vulnerabilities in WebKit in Apple Safari before 4.0.4 on Windows allow remote FTP servers to execute arbitrary code, cause a denial of service (application crash), or obtain sensitive information via a crafted directory listing in a reply.
http://lists.apple.com/archives/security-announce/2009/Nov/msg00001.html
http://lists.apple.com/archives/security-announce/2010/Feb/msg00000.html
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html
http://secunia.com/advisories/37346
http://secunia.com/advisories/37393
http://secunia.com/advisories/37397
http://secunia.com/advisories/43068
http://support.apple.com/kb/HT3949
http://support.apple.com/kb/HT4013
http://www.securityfocus.com/bid/36995
http://www.securitytracker.com/id?1023166
http://www.vupen.com/english/advisories/2009/3217
http://www.vupen.com/english/advisories/2011/0212
https://bugzilla.redhat.com/show_bug.cgi?id=525788
https://exchange.xforce.ibmcloud.com/vulnerabilities/54241
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6362
https://www.redhat.com/archives/fedora-package-announce/2009-November/msg00545.html
https://www.redhat.com/archives/fedora-package-announce/2009-November/msg00549.html
Source: MITRE
Published: 2009-11-13
Updated: 2017-09-19
Type: NVD-CWE-noinfo
Base Score: 9.3
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Impact Score: 10
Exploitability Score: 8.6
Severity: HIGH
AND
OR
cpe:2.3:a:apple:safari:0.8:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:0.9:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:1.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:1.0:beta:*:*:*:*:*:*
cpe:2.3:a:apple:safari:1.0:beta2:*:*:*:*:*:*
cpe:2.3:a:apple:safari:1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:1.0.0b1:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:1.0.0b2:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:1.0.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:1.1.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:1.1.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:1.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:1.2.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:1.2.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:1.2.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:1.2.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:1.2.4:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:1.2.5:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:1.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:1.3.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:1.3.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:1.3.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:2:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:2.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:2.0.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:2.0.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:2.0.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:2.0.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:2.0.3:417.8:*:*:*:*:*:*
cpe:2.3:a:apple:safari:2.0.3:417.9:*:*:*:*:*:*
cpe:2.3:a:apple:safari:2.0.3:417.9.2:*:*:*:*:*:*
cpe:2.3:a:apple:safari:2.0.3:417.9.3:*:*:*:*:*:*
cpe:2.3:a:apple:safari:2.0.3_417.9.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:2.0.4:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:2.0.4_419.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:2.0_pre:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:3:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:3.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:3.0.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:3.0.0b:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:3.0.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:3.0.1:beta:*:*:*:*:*:*
cpe:2.3:a:apple:safari:3.0.1b:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:3.0.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:3.0.2b:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:3.0.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:3.0.3b:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:3.0.4:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:3.0.4_beta:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:3.0.4b:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:3.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:3.1.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:3.1.0b:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:3.1.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:3.1.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:3.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:3.2.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:3.2.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:3.2.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:3.2.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:4.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:4.0:beta:*:*:*:*:*:*
cpe:2.3:a:apple:safari:4.0.0b:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:4.0.1:*:*:*:*:*:*:*
OR
ID | Name | Product | Family | Severity |
---|---|---|---|---|
75629 | openSUSE Security Update : libwebkit (openSUSE-SU-2011:0024-1) | Nessus | SuSE Local Security Checks | critical |
68015 | Oracle Linux 4 : thunderbird (ELSA-2010-0154) | Nessus | Oracle Linux Local Security Checks | critical |
67949 | Oracle Linux 3 / 4 : seamonkey (ELSA-2009-1531) | Nessus | Oracle Linux Local Security Checks | critical |
67948 | Oracle Linux 4 / 5 : firefox (ELSA-2009-1530) | Nessus | Oracle Linux Local Security Checks | critical |
63923 | RHEL 5 : thunderbird (RHSA-2010:0153) | Nessus | Red Hat Local Security Checks | critical |
53764 | openSUSE Security Update : libwebkit (openSUSE-SU-2011:0024-1) | Nessus | SuSE Local Security Checks | critical |
46271 | RHEL 4 : thunderbird (RHSA-2010:0154) | Nessus | Red Hat Local Security Checks | critical |
45361 | CentOS 5 : thunderbird (CESA-2010:0153) | Nessus | CentOS Local Security Checks | critical |
45093 | CentOS 4 : thunderbird (CESA-2010:0154) | Nessus | CentOS Local Security Checks | critical |
5337 | Apple iOS < 3.1.3 Multiple Vulnerabilities | Nessus Network Monitor | Mobile Devices | high |
42807 | Fedora 11 : qt-4.5.3-9.fc11 (2009-11491) | Nessus | Fedora Local Security Checks | high |
42804 | Fedora 10 : qt-4.5.3-9.fc10 (2009-11488) | Nessus | Fedora Local Security Checks | high |
42803 | Fedora 12 : qt-4.5.3-9.fc12 (2009-11487) | Nessus | Fedora Local Security Checks | high |
42478 | Safari < 4.0.4 Multiple Vulnerabilities | Nessus | Windows | high |
801003 | Safari < 4.0.4 Multiple Vulnerabilities | Log Correlation Engine | Web Clients | high |
5232 | Safari < 4.0.4 Multiple Vulnerabilities | Nessus Network Monitor | Web Clients | medium |
42296 | CentOS 3 / 4 : seamonkey (CESA-2009:1531) | Nessus | CentOS Local Security Checks | critical |
42295 | CentOS 4 : firefox (CESA-2009:1530) | Nessus | CentOS Local Security Checks | critical |
42288 | RHEL 3 / 4 : seamonkey (RHSA-2009:1531) | Nessus | Red Hat Local Security Checks | critical |
42287 | RHEL 4 / 5 : firefox (RHSA-2009:1530) | Nessus | Red Hat Local Security Checks | critical |