Apple

Safari

1591 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.3

CVE-2010-1396

  • EPSS 10.61%
  • Veröffentlicht 11.06.2010 18:00:24
  • Zuletzt bearbeitet 29.04.2026 01:13:23

Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vecto...

9.3

CVE-2010-1397

  • EPSS 12.01%
  • Veröffentlicht 11.06.2010 18:00:24
  • Zuletzt bearbeitet 29.04.2026 01:13:23

Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vecto...

4.3

CVE-2010-1390

  • EPSS 1.17%
  • Veröffentlicht 11.06.2010 18:00:21
  • Zuletzt bearbeitet 29.04.2026 01:13:23

Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to inject arbitrary web script or HTML via vectors related to improper U...

4.3

CVE-2010-1391

  • EPSS 0.41%
  • Veröffentlicht 11.06.2010 18:00:21
  • Zuletzt bearbeitet 29.04.2026 01:13:23

Multiple directory traversal vulnerabilities in the (a) Local Storage and (b) Web SQL database implementations in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allow remote attackers to ...

9.3

CVE-2010-1392

  • EPSS 13.27%
  • Veröffentlicht 11.06.2010 18:00:21
  • Zuletzt bearbeitet 29.04.2026 01:13:23

Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vecto...

4.3

CVE-2010-1388

  • EPSS 0.84%
  • Veröffentlicht 11.06.2010 18:00:20
  • Zuletzt bearbeitet 29.04.2026 01:13:23

WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6, and before 4.1 on Mac OS X 10.4, does not properly handle clipboard (1) drag and (2) paste operations for URLs, which allows user-assisted remote attackers to read arbitrary files via a...

4.3

CVE-2010-1389

  • EPSS 0.98%
  • Veröffentlicht 11.06.2010 18:00:20
  • Zuletzt bearbeitet 29.04.2026 01:13:23

Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows user-assisted remote attackers to inject arbitrary web script or HTML via vectors involvi...

4.3

CVE-2010-1384

  • EPSS 1.28%
  • Veröffentlicht 11.06.2010 18:00:15
  • Zuletzt bearbeitet 29.04.2026 01:13:23

Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, does not provide a warning about a (1) http or (2) https URL that contains a username and password, which makes it easier for remote attackers to cond...

9.3

CVE-2010-1385

  • EPSS 3.27%
  • Veröffentlicht 11.06.2010 18:00:15
  • Zuletzt bearbeitet 29.04.2026 01:13:23

Use-after-free vulnerability in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PDF d...

4.3

CVE-2010-1940

  • EPSS 0.26%
  • Veröffentlicht 14.05.2010 20:30:01
  • Zuletzt bearbeitet 29.04.2026 01:13:23

Apple Safari 4.0.5 on Windows sends the "Authorization: Basic" header appropriate for one web site to a different web site named in a Location header received from the first site, which allows remote web servers to obtain sensitive information by log...