Remote code execution vulnerability in Apple Safari - CVE-2012-3748 (Mac OS X)| Deprecated |
| ID: oval:org.secpod.oval:def:15502 | Date: (C)2013-09-20 (M)2023-11-18 |
| Class: VULNERABILITY | Family: macos |
The host is installed with Apple Safari before 5.1.10 and is prone to remote code execution vulnerability. The flaw is present in the JavaScriptCore's JSArray::sort() method, which fails in proper bound checking. Successful exploitation could allow attackers to cause an unexpected application termination or execute arbitrary code.
| Platform: |
| Apple Mac OS X 10.8 |
| Apple Mac OS X 10.9 |
| Apple Mac OS X 10.10 |
| Apple Mac OS X Server 10.8 |
| Apple Mac OS X Server 10.9 |
| Apple Mac OS X Server 10.10 |
