Apple

Safari

1536 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5

CVE-2010-1413

  • EPSS 0.99%
  • Veröffentlicht 11.06.2010 18:00:40
  • Zuletzt bearbeitet 11.04.2025 00:51:21

WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, sends NTLM credentials in cleartext in unspecified circumstances, which allows man-in-the-middle attackers to obtain sensitive information v...

4.3

CVE-2010-1406

  • EPSS 0.74%
  • Veröffentlicht 11.06.2010 18:00:37
  • Zuletzt bearbeitet 11.04.2025 00:51:21

WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, sends an https URL in the Referer header of an http request in certain circumstances involving https to http redirection, which allows remot...

4.3

CVE-2010-1408

  • EPSS 0.74%
  • Veröffentlicht 11.06.2010 18:00:37
  • Zuletzt bearbeitet 11.04.2025 00:51:21

WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to bypass intended restrictions on outbound connections to "non-default TCP ports" via a crafted port number, relate...

5.8

CVE-2010-1409

  • EPSS 0.86%
  • Veröffentlicht 11.06.2010 18:00:37
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Incomplete blacklist vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to trigger disclosure of data over IRC via vectors involving an IRC service po...

9.3

CVE-2010-1402

  • EPSS 7.9%
  • Veröffentlicht 11.06.2010 18:00:32
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Double free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors ...

9.3

CVE-2010-1403

  • EPSS 11.05%
  • Veröffentlicht 11.06.2010 18:00:32
  • Zuletzt bearbeitet 11.04.2025 00:51:21

WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, accesses uninitialized memory during the handling of a use element in an SVG document, which allows remote attackers to execute arbitrary co...

9.3

CVE-2010-1404

  • EPSS 11.25%
  • Veröffentlicht 11.06.2010 18:00:32
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via an SV...

9.3

CVE-2010-1405

  • EPSS 7.65%
  • Veröffentlicht 11.06.2010 18:00:32
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via an HT...

9.3

CVE-2010-1398

  • EPSS 5.24%
  • Veröffentlicht 11.06.2010 18:00:29
  • Zuletzt bearbeitet 11.04.2025 00:51:21

WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, does not properly perform ordered list insertions, which allows remote attackers to execute arbitrary code or cause a denial of service (mem...

9.3

CVE-2010-1399

  • EPSS 3.76%
  • Veröffentlicht 11.06.2010 18:00:29
  • Zuletzt bearbeitet 11.04.2025 00:51:21

WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, accesses uninitialized memory during a selection change on a form input element, which allows remote attackers to execute arbitrary code or ...