Detections
Analytics
Safari < 5.1 Multiple Vulnerabilities
high Log Correlation Engine Plugin ID 800988
Synopsis
The remote host contains a web browser that is vulnerable to multiple attack vectors.Description
The remote host has Safari installed.Versions of Safari earlier than 5.1 are potentially affected by several issues in the following component :
- CFNetwork
- ColorSync
- CoreFoundation
- CoreGraphics
- International Components for Unicode
- ImageIO
- libxslt
- libxml
- Safari
- WebKit
Solution
Upgrade to Safari 5.1 or later.See Also
lists.apple.com/archives/security-announce/2011/jul/msg00002.html
Plugin Details
Severity: High
ID: 800988
Family: Web Clients
Published: 7/20/2011
Vulnerability Information
Patch Publication Date: 7/20/2011
Vulnerability Publication Date: 7/20/2011
Exploitable With
CANVAS (White_Phosphorus)
Metasploit (Apple Safari Webkit libxslt Arbitrary File Creation)
Reference Information
CVE: CVE-2010-1383, CVE-2010-1420, CVE-2010-1823, CVE-2010-3829, CVE-2011-0164, CVE-2011-0195, CVE-2011-0200, CVE-2011-0201, CVE-2011-0202, CVE-2011-0204, CVE-2011-0206, CVE-2011-0214, CVE-2011-0215, CVE-2011-0216, CVE-2011-0217, CVE-2011-0218, CVE-2011-0219, CVE-2011-0221, CVE-2011-0222, CVE-2011-0223, CVE-2011-0225, CVE-2011-0232, CVE-2011-0233, CVE-2011-0234, CVE-2011-0235, CVE-2011-0237, CVE-2011-0238, CVE-2011-0240, CVE-2011-0241, CVE-2011-0242, CVE-2011-0244, CVE-2011-0253, CVE-2011-0254, CVE-2011-0255, CVE-2011-0981, CVE-2011-0983, CVE-2011-1107, CVE-2011-1109, CVE-2011-1114, CVE-2011-1115, CVE-2011-1117, CVE-2011-1121, CVE-2011-1188, CVE-2011-1190, CVE-2011-1203, CVE-2011-1204, CVE-2011-1288, CVE-2011-1293, CVE-2011-1295, CVE-2011-1296, CVE-2011-1449, CVE-2011-1451, CVE-2011-1453, CVE-2011-1457, CVE-2011-1462, CVE-2011-1774, CVE-2011-1797
BID: 48832, 48820, 48823, 48824, 48825, 48827, 48828, 48831, 48833, 48837, 48839, 48840, 48841, 48842, 48843, 48844, 48845, 48846, 48847, 48848, 48849, 48850, 48851, 48852, 48853, 48854, 48855, 48856, 48857, 48858, 48859, 48860