Mac OS X : Apple Safari < 6.1 Multiple Vulnerabilities

Medium Nessus Plugin ID 70563

Synopsis

The remote host contains a web browser that is affected by several vulnerabilities.

Description

The version of Apple Safari installed on the remote Mac OS X 10.7 or 10.8 host is earlier than 6.1. It is, therefore, potentially affected by several issues :

- A bounds-checking issue exists related to handling XML files. (CVE-2013-1036)

- Multiple memory corruption vulnerabilities exist in WebKit that could lead to unexpected program termination or arbitrary code execution. (CVE-2013-1037, CVE-2013-1038, CVE-2013-1039, CVE-2013-1040, CVE-2013-1041, CVE-2013-1042, CVE-2013-1043, CVE-2013-1044, CVE-2013-1045, CVE-2013-1046, CVE-2013-1047, CVE-2013-2842, CVE-2013-5125, CVE-2013-5126, CVE-2013-5127, CVE-2013-5128)

- An error exists related to URL handling that could lead to information disclosure. (CVE-2013-2848)

- A cross-site scripting issue exists in WebKit's handling of URLs and drag-and-drop operations. (CVE-2013-5129, CVE-2013-5131)

- Using 'Web Inspector' could negate 'Private Browsing' protections leading to information disclosure.
(CVE-2013-5130)

- An error exists related to the 'Reopen All Windows from Last Session' feature that could allow a local attacker to obtain plaintext user ID and password information from the 'LastSession.plist' file.
(CVE-2013-7127)

Solution

Upgrade to Apple Safari 6.1 or later.

See Also

http://support.apple.com/kb/HT6000

http://lists.apple.com/archives/security-announce/2013/Oct/msg00003.html

http://www.securelist.com/en/blog/8168/Loophole_in_Safari

Plugin Details

Severity: Medium

ID: 70563

File Name: macosx_Safari6_1.nasl

Version: 1.6

Type: local

Agent: macosx

Published: 2013/10/23

Updated: 2018/07/14

Dependencies: 31604

Risk Information

Risk Factor: Medium

CVSS v2.0

Base Score: 6.8

Temporal Score: 5.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P

Temporal Vector: CVSS2#E:POC/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:apple:safari

Required KB Items: Host/local_checks_enabled, Host/MacOSX/Version, MacOSX/Safari/Installed

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2013/10/22

Vulnerability Publication Date: 2013/10/22

Reference Information

CVE: CVE-2013-1036, CVE-2013-1037, CVE-2013-1038, CVE-2013-1039, CVE-2013-1040, CVE-2013-1041, CVE-2013-1042, CVE-2013-1043, CVE-2013-1044, CVE-2013-1045, CVE-2013-1046, CVE-2013-1047, CVE-2013-2842, CVE-2013-2848, CVE-2013-5125, CVE-2013-5126, CVE-2013-5127, CVE-2013-5128, CVE-2013-5129, CVE-2013-5130, CVE-2013-5131, CVE-2013-7127

BID: 60067, 60073, 62537, 62539, 62541, 62551, 62553, 62554, 62556, 62557, 62558, 62559, 62560, 62563, 62565, 62567, 62568, 62569, 62570, 62571, 63289, 64409

APPLE-SA: APPLE-SA-2013-10-22-2

CWE: 20, 74, 79, 442, 629, 711, 712, 722, 725, 750, 751, 800, 801, 809, 811, 864, 900, 928, 931, 990