Download
| Alert*
|
oval:org.secpod.oval:def:39552
The host is installed with Apple Safari before 10.1 and is prone to a cross-origin resource sharing vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to exfiltrate data cross-origin. oval:org.secpod.oval:def:2000727 An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. tvOS before 10.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site ... oval:org.secpod.oval:def:703561 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK+. oval:org.secpod.oval:def:1800089 CVE-2016-9643:The regex code in WebKit allows remote attackers to cause a denial of service as demonstrated in a large number of . Versions affected: WebKitGTK+ before 2.14.6 CVE-2017-2367: This issue allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a c ... oval:org.secpod.oval:def:51769 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK+. oval:org.secpod.oval:def:39561 The host is missing a security update according to Apple advisory, APPLE-SA-2017-03-27-2. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle maliciously crafted web content. Successful exploitation could allow attackers to execute ... |
