Detections
Analytics
Safari < 4.0 Multiple Vulnerabilities
high Nessus Network Monitor Plugin ID 5046
Synopsis
The remote host contains a web browser that is affected by several issues.Description
The version of Safari installed on the remote host is earlier than 4.0. Such versions are potentially affected by numerous issues in the following components :- CFNetwork
- CoreGraphics
- ImageIO
- International Components for Unicode
- libxml
- Safari
- Safari Windows Installer
- WebKit
Solution
Upgrade to Safari 4.0 or later.See Also
http://support.apple.com/kb/HT3613
http://www.securityfocus.com/advisories/17079
http://lists.apple.com/archives/security-announce/2009/jun/msg00002.html
Plugin Details
Severity: High
ID: 5046
Family: Web Clients
Published: 8/18/2004
Updated: 3/6/2019
Risk Information
VPR
Risk Factor: Medium
Score: 6.7
CVSS v2
Risk Factor: High
Base Score: 7.5
Temporal Score: 6.2
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS v3
Risk Factor: High
Base Score: 7.3
Temporal Score: 6.8
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Temporal Vector: CVSS:3.0/E:F/RL:O/RC:C
Vulnerability Information
CPE: cpe:/a:apple:safari
Exploitable With
CANVAS (CANVAS)
Reference Information
CVE: CVE-2009-1681, CVE-2009-1682, CVE-2009-1684, CVE-2009-1685, CVE-2009-1686, CVE-2009-1687, CVE-2009-1688, CVE-2009-1689, CVE-2009-1690, CVE-2009-1691, CVE-2009-1693, CVE-2009-1694, CVE-2009-1695, CVE-2009-1696, CVE-2009-1697, CVE-2009-1698, CVE-2009-1699, CVE-2009-1700, CVE-2009-1701, CVE-2009-1702, CVE-2009-1703, CVE-2009-1704, CVE-2009-1705, CVE-2009-1706, CVE-2009-1707, CVE-2009-1708, CVE-2009-1709, CVE-2009-1710, CVE-2009-1711, CVE-2009-1712, CVE-2009-1713, CVE-2009-1714, CVE-2009-1715, CVE-2009-1716, CVE-2009-1718, CVE-2009-2027, CVE-2009-2420, CVE-2009-2421
BID: 35271, 35309, 35318, 35334, 35260, 35317, 35319, 35311, 35320, 35332, 35330, 35331, 35322, 35328, 35321, 35325, 35327, 35333, 35340, 35310, 35350, 35348, 35349, 35270, 35272, 35283, 35284, 35308, 35315, 35346, 35344, 35339, 35353, 35352, 35351, 35347, 35481, 35482