Download
| Alert*
oval:org.mitre.oval:def:7082
Multiple directory traversal vulnerabilities in the (a) Local Storage and (b) Web SQL database implementations in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allow remote attackers to create arbitrary database files via vectors involv ... oval:org.secpod.oval:def:4267 The host is installed with Apple Safari before 4.1 or 5.0 and is prone to a cross site scripting vulnerability. A flaw is present in the application, which fails to handle a crafted URL. Successful exploitation could allow attackers to create arbitrary database files. oval:org.secpod.oval:def:4268 The host is installed with Apple Safari before 4.1 or 5.0 and is prone to a cross site scripting vulnerability. A flaw is present in the application, which fails to handle vectors involving HTML document fragments. Successful exploitation could allow attackers to inject arbitrary web script or HMTL. oval:org.secpod.oval:def:4277 The host is missing a security update according to Apple advisory, APPLE-SA-2010-06-07-1. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle malicious data. Successful exploitation could allow attackers to disclose sensitive inform ... oval:org.secpod.oval:def:300417 Multiple cross-site scripting, denial of service and arbitrary code execution security flaws were discovered in webkit. Please consult the CVE web links for further information. The updated packages have been upgraded to the latest version to correct these issues. |