Mac OS X : Apple Safari < 6.1.4 / 7.0.4 Multiple Vulnerabilities
High Nessus Plugin ID 74139
SynopsisThe remote host contains a web browser that is affected by multiple vulnerabilities.
DescriptionThe version of Apple Safari installed on the remote Mac OS X host is a version prior to 6.1.4 or 7.0.4. It is, therefore, potentially affected by the following vulnerabilities :
- Multiple memory corruption vulnerabilities exist in WebKit that could lead to unexpected program termination or arbitrary code execution.
(CVE-2013-2875, CVE-2013-2927, CVE-2014-1323, CVE-2014-1324, CVE-2014-1326, CVE-2014-1327, CVE-2014-1329, CVE-2014-1330, CVE-2014-1331, CVE-2014-1333, CVE-2014-1334, CVE-2014-1335, CVE-2014-1336, CVE-2014-1337, CVE-2014-1338, CVE-2014-1339, CVE-2014-1341, CVE-2014-1342, CVE-2014-1343, CVE-2014-1344, CVE-2014-1731)
- An error exists related to unicode character handling in URLs that could allow an attacker send an incorrect 'postMessage' origin that could allow a security bypass.
SolutionUpgrade to Apple Safari 6.1.4 / 7.0.4 or later.