Download
| Alert*
|
oval:org.mitre.oval:def:6656
Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to inject arbitrary web script or HTML via vectors related to a malformed URL. oval:org.secpod.oval:def:4321 The host is installed with Apple Safari before 4.1 or 5.0 and is prone to a cross site scripting vulnerability. A flaw is present in the application, which fails to handle vectors related to a malformed URL. Successful exploitation could allow attackers to inject arbitrary code. oval:org.secpod.oval:def:4411 The host is missing an important security update according to APPLE-SA-2010-06-16-1. The flaws are present in the application, which fails to sanitize user supplied data. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4277 The host is missing a security update according to Apple advisory, APPLE-SA-2010-06-07-1. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle malicious data. Successful exploitation could allow attackers to disclose sensitive inform ... |
