Apple

Safari

1622 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
Exploit
  • EPSS 11.91%
  • Veröffentlicht 22.12.2005 23:03:00
  • Zuletzt bearbeitet 16.06.2026 22:18:55

The khtml::RenderTableSection::ensureRows function in KHTMLParser in Apple Mac OS X 10.4.3 and earlier, as used by Safari and TextEdit, allows remote attackers to cause a denial of service (memory consumption and application crash) via HTML files wit...

  • EPSS 1.31%
  • Veröffentlicht 29.11.2005 21:03:00
  • Zuletzt bearbeitet 16.06.2026 22:17:50

Apple Safari 2.0.2 allows remote attackers to cause a denial of service (system slowdown) via a Javascript BODY onload event that calls the window function.

  • EPSS 1.09%
  • Veröffentlicht 26.10.2005 00:02:00
  • Zuletzt bearbeitet 16.06.2026 22:15:08

Safari after 2.0 in Apple Mac OS X 10.3.9 allows remote attackers to bypass domain restrictions via crafted web archives that cause Safari to render them as if they came from a different site.

Exploit
  • EPSS 3%
  • Veröffentlicht 21.09.2005 22:03:00
  • Zuletzt bearbeitet 16.06.2026 22:16:05

Apple Safari allows remote attackers to cause a denial of service (application crash) via a crafted data:// URL.

  • EPSS 4.77%
  • Veröffentlicht 19.08.2005 04:00:00
  • Zuletzt bearbeitet 16.06.2026 22:15:07

Safari in Mac OS X 10.3.9 and 10.4.2, when rendering Rich Text Format (RTF) files, can directly access URLs without performing the normal security checks, which allows remote attackers to execute arbitrary commands.

  • EPSS 1.06%
  • Veröffentlicht 19.08.2005 04:00:00
  • Zuletzt bearbeitet 16.06.2026 22:15:07

Safari in Mac OS X 10.3.9 and 10.4.2 submits forms from an XSL formatted page to the next page that is browsed by the user, which causes form data to be sent to the wrong site.

  • EPSS 4.3%
  • Veröffentlicht 19.08.2005 04:00:00
  • Zuletzt bearbeitet 16.06.2026 22:15:07

Safari in WebKit in Mac OS X 10.4 to 10.4.2 directly accesses URLs within PDF files without the normal security checks, which allows remote attackers to execute arbitrary code via links in a PDF file.

Exploit
  • EPSS 3.1%
  • Veröffentlicht 17.08.2005 04:00:00
  • Zuletzt bearbeitet 16.06.2026 22:15:16

Apple Safari 1.3 (132) on Mac OS X 1.3.9 allows remote attackers to cause a denial of service (crash) via certain Javascript, possibly involving a function that defines a handler for itself within the function body.

Exploit
  • EPSS 1.85%
  • Veröffentlicht 13.07.2005 04:00:00
  • Zuletzt bearbeitet 16.06.2026 22:14:35

Safari version 2.0 (412) does not clearly associate a Javascript dialog box with the web page that generated it, which allows remote attackers to spoof a dialog box from a trusted site and facilitates phishing attacks, aka the "Dialog Origin Spoofing...

Exploit
  • EPSS 2.2%
  • Veröffentlicht 03.05.2005 04:00:00
  • Zuletzt bearbeitet 16.06.2026 22:12:57

Safari 1.3 allows remote attackers to cause a denial of service (application crash) via a long https URL that triggers a NULL pointer dereference.