Mac OS X : Apple Safari < 6.2.7 / 7.1.7 / 8.0.7 Multiple Vulnerabilities

This script is Copyright (C) 2015-2016 Tenable Network Security, Inc.


Synopsis :

The web browser installed on the remote host is affected by multiple
vulnerabilities.

Description :

The version of Apple Safari installed on the remote Mac OS X host is
prior to 6.2.7 / 7.1.7 / 8.0.7. It is, therefore, affected by the
following vulnerabilities :

- A flaw exists in WebKit Page Loading due to the Origin
request header being preserved for cross-origin
redirects. A remote attacker can exploit this, via a
specially crafted web page, to circumvent cross-site
request forgery (XSRF) protections. (CVE-2015-3658)

- A flaw exists in the WebKit Storage's SQLite authorizer
due to insufficient comparison. A remote attacker can
exploit this, via a specially crafted web page, to
invoke arbitrary SQL functions, resulting in a denial
of service condition or executing arbitrary code.
(CVE-2015-3659)

- An information disclosure vulnerability exists in WebKit
PDF due to improper restrictions, related to JavaScript
execution, of links embedded in PDF files. A remote
attacker can exploit this, via a specially crafted PDF
file, to disclose sensitive information from the file
system, including cookies. (CVE-2015-3660)

- An information disclosure vulnerability exists in WebKit
due to improper restrictions on renaming WebSQL tables.
A remote attacker can exploit this, via a specially
crafted website, to access WebSQL databases belonging to
other websites. (CVE-2015-3727)

See also :

https://support.apple.com/en-us/HT204950

Solution :

Upgrade to Apple Safari 6.2.7 / 7.1.7 / 8.0.7 or later.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 7.9
(CVSS2#E:U/RL:ND/RC:C)
Public Exploit Available : false

Family: MacOS X Local Security Checks

Nessus Plugin ID: 84491 ()

Bugtraq ID:

CVE ID: CVE-2015-3658
CVE-2015-3659
CVE-2015-3660
CVE-2015-3727

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now