SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

Download | Alert*

OVAL

Multiple vulnerabilities in Webkit in Apple Safari - APPLE-SA-2014-04-01-1 (Mac OS X)

ID: oval:org.secpod.oval:def:17372	Date: (C)2014-04-03 (M)2023-11-18
Class: PATCH	Family: macos

The host is missing a security update according to Apple advisory, APPLE-SA-2014-04-01-1. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle a crafted web site or unknown vectors. Successful exploitation could allow attackers to execute arbitrary code, crash the service or bypass a sandbox protection mechanism and read arbitrary files by leveraging WebProcess access.

Platform:

Apple Mac OS X 10.8

Apple Mac OS X 10.9

Apple Mac OS X 10.10

Apple Mac OS X Server 10.8

Apple Mac OS X Server 10.9

Apple Mac OS X Server 10.10

Product:

Apple Safari

Reference:

APPLE-SA-2014-04-01-1

CVE-2014-1313