macOS : Apple Safari <= 11.0.2 (11604.4.7.1.6 / 12604.4.7.1.6 / 13604.4.7.10.6) Information Disclosure (Spectre)
Medium Nessus Plugin ID 105689
SynopsisA web browser installed on the remote macOS or Mac OS X host is affected by an information disclosure vulnerability.
DescriptionThe version of Apple Safari installed on the remote macOS or Mac OS X host is prior to 11.0.2, or is 11.0.2 and missing the January 8th patch.
It is, therefore, affected by a vulnerability that exists within microprocessors utilizing speculative execution and indirect branch prediction, which may allow an attacker with local user access to disclose information via a side-channel analysis.
SolutionUpgrade to Apple Safari version 11.0.2 and apply the vendor patch.