Test Kennung:	1.3.6.1.4.1.25623.1.0.800524
Kategorie:	Denial of Service
Titel:	Apple Safari URI NULL Pointer Dereference DoS Vulnerability - Windows
Zusammenfassung:	Apple Safari web browser is prone to a denial of service (DoS) vulnerability.
Beschreibung:	Summary: Apple Safari web browser is prone to a denial of service (DoS) vulnerability. Vulnerability Insight: Browser fails to adequately sanitize user supplied input in URI feeds. Hence when certain characters are passed at the beginning of the URI, the NULL Pointer Dereference bug occurs, using '%', '{', '}', '`', '^', pipe and '&' characters. Vulnerability Impact: Successful exploitation could allow remote attackers to cause browser crash. Affected Software/OS: Apple Safari version 4 beta and prior on Windows. Solution: No known solution was made available for at least one year since the disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2009-0744 BugTraq ID: 33909 http://www.securityfocus.com/bid/33909 Bugtraq: 20090225 Apple Safari 4 Beta feeds: URI NULL Pointer Dereference Denial of Service Vulnerability (Google Search) http://www.securityfocus.com/archive/1/501229/100/0/threaded https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6066 XForce ISS Database: safari-feedsuri-dos(48943) https://exchange.xforce.ibmcloud.com/vulnerabilities/48943
Copyright	Copyright (C) 2009 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.