Apple

Safari

1622 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.81%
  • Veröffentlicht 14.05.2010 20:30:01
  • Zuletzt bearbeitet 16.06.2026 23:19:37

Apple Safari 4.0.5 on Windows sends the "Authorization: Basic" header appropriate for one web site to a different web site named in a Location header received from the first site, which allows remote web servers to obtain sensitive information by log...

Exploit
  • EPSS 14.71%
  • Veröffentlicht 13.05.2010 22:30:00
  • Zuletzt bearbeitet 16.06.2026 23:19:37

Use-after-free vulnerability in Apple Safari 4.0.5 on Windows allows remote attackers to execute arbitrary code by using window.open to create a popup window for a crafted HTML document, and then calling the parent window's close method, which trigge...

Exploit
  • EPSS 1.98%
  • Veröffentlicht 06.05.2010 14:53:01
  • Zuletzt bearbeitet 16.06.2026 23:19:12

WebKit.dll in WebKit, as used in Safari.exe 4.531.9.1 in Apple Safari, allows remote attackers to cause a denial of service (application crash) via JavaScript that writes <marquee> sequences in an infinite loop.

Exploit
  • EPSS 8.6%
  • Veröffentlicht 29.03.2010 19:30:00
  • Zuletzt bearbeitet 16.06.2026 23:17:46

Safari on Apple iPhone OS 3.1.3 for iPod touch allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via vectors related to an array of long strings, an array of IMG elements with crafted strings ...

Exploit
  • EPSS 7.23%
  • Veröffentlicht 29.03.2010 19:30:00
  • Zuletzt bearbeitet 16.06.2026 23:17:46

Safari on Apple iPhone OS 3.1.3 for iPod touch allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via vectors involving document.write calls with long crafted strings.

Exploit
  • EPSS 1.5%
  • Veröffentlicht 29.03.2010 19:30:00
  • Zuletzt bearbeitet 16.06.2026 23:17:46

Safari on Apple iPhone OS 3.1.3 for iPod touch allows remote attackers to cause a denial of service (application crash) via a JavaScript loop that attempts to construct an infinitely long string.

Exploit
  • EPSS 8.95%
  • Veröffentlicht 29.03.2010 19:30:00
  • Zuletzt bearbeitet 16.06.2026 23:17:46

Safari on Apple iPhone OS 3.1.3 for iPod touch allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a large integer in the numcolors attribute of a recolorinfo element in a VML file, possibly...

Exploit
  • EPSS 8.3%
  • Veröffentlicht 29.03.2010 19:30:00
  • Zuletzt bearbeitet 16.06.2026 23:17:46

Safari on Apple iPhone OS 3.1.3 for iPod touch allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long exception string in a throw statement, possibly a related issue to CVE-2009-1514.

Exploit
  • EPSS 3.84%
  • Veröffentlicht 27.03.2010 19:07:11
  • Zuletzt bearbeitet 16.06.2026 23:17:34

JavaScriptCore.dll, as used in Apple Safari 4.0.5 on Windows XP SP3, allows remote attackers to cause a denial of service (application crash) via an HTML document composed of many successive occurrences of the <object> substring.

  • EPSS 19.02%
  • Veröffentlicht 25.03.2010 21:00:01
  • Zuletzt bearbeitet 16.06.2026 23:17:32

Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, Safari before 4.1 on Mac OS X 10.4, and Safari on Apple iPhone OS allows remote attackers to execute arbitrary code or cause a denial of serv...