Mac OS X : Apple Safari < 9.0 Multiple Vulnerabilities

critical Nessus Plugin ID 86252

Synopsis

The remote host has a web browser installed is affected by multiple vulnerabilities.

Description

The version of Apple Safari installed on the remote Mac OS X host is prior to 9.0. It is, therefore, affected by multiple vulnerabilities in the following components :

- Safari
- Safari Downloads
- Safari Extensions
- Safari Safe Browsing
- WebKit
- WebKit CSS
- WebKit JavaScript Bindings
- WebKit Page Loading
- WebKit Plug-ins

Solution

Upgrade to Apple Safari version 9.0 or later.

See Also

https://support.apple.com/en-us/HT205265

Plugin Details

Severity: Critical

ID: 86252

File Name: macosx_Safari9_0.nasl

Version: 1.5

Type: local

Agent: macosx

Published: 10/2/2015

Updated: 11/20/2019

Supported Sensors: Nessus Agent

Risk Information

CVSS Score Source: CVE-2015-5780

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 7.4

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: E:U/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:apple:safari

Required KB Items: Host/local_checks_enabled, Host/MacOSX/Version, MacOSX/Safari/Installed

Exploit Ease: No known exploits are available

Patch Publication Date: 9/30/2015

Vulnerability Publication Date: 9/24/2015

Reference Information

CVE: CVE-2015-3801, CVE-2015-5764, CVE-2015-5765, CVE-2015-5767, CVE-2015-5780, CVE-2015-5788, CVE-2015-5789, CVE-2015-5790, CVE-2015-5791, CVE-2015-5792, CVE-2015-5793, CVE-2015-5794, CVE-2015-5795, CVE-2015-5796, CVE-2015-5797, CVE-2015-5798, CVE-2015-5799, CVE-2015-5800, CVE-2015-5801, CVE-2015-5802, CVE-2015-5803, CVE-2015-5804, CVE-2015-5805, CVE-2015-5806, CVE-2015-5807, CVE-2015-5808, CVE-2015-5809, CVE-2015-5810, CVE-2015-5811, CVE-2015-5812, CVE-2015-5813, CVE-2015-5814, CVE-2015-5815, CVE-2015-5816, CVE-2015-5817, CVE-2015-5818, CVE-2015-5819, CVE-2015-5820, CVE-2015-5821, CVE-2015-5822, CVE-2015-5823, CVE-2015-5825, CVE-2015-5826, CVE-2015-5827, CVE-2015-5828

BID: 76764

APPLE-SA: APPLE-SA-2015-09-30-2