Denial of Service : Apple Safari Denial of Service Vulnerability (Apr 2009)

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 145615 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.800549

Kategorie: Denial of Service

Titel: Apple Safari Denial of Service Vulnerability (Apr 2009) - Windows

Zusammenfassung: Apple Safari Web Browser is prone to a denial of service (DoS) vulnerability.

Beschreibung: Summary:
Apple Safari Web Browser is prone to a denial of service (DoS) vulnerability.

Vulnerability Insight:
Improper parsing of XML documents while persuading a victim to open a
specially-crafted XML document containing an overly large number of nested elements crashes the Browser.

Vulnerability Impact:
Attacker could exploit this vulnerability to cause the browser to crash.

Affected Software/OS:
Apple Safari version 4 beta and prior on Windows.

Solution:
No known solution was made available for at least one year since the disclosure
of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer
release, disable respective features, remove the product or replace the product by another one.

CVSS Score:
4.3

CVSS Vector:
AV:N/AC:M/Au:N/C:N/I:N/A:P

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2009-1233
BugTraq ID: 34318
http://www.securityfocus.com/bid/34318
https://www.exploit-db.com/exploits/8325
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5559
XForce ISS Database: safari-xml-dos(49527)
https://exchange.xforce.ibmcloud.com/vulnerabilities/49527

Copyright Copyright (C) 2009 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.800549
Kategorie:	Denial of Service
Titel:	Apple Safari Denial of Service Vulnerability (Apr 2009) - Windows
Zusammenfassung:	Apple Safari Web Browser is prone to a denial of service (DoS) vulnerability.
Beschreibung:	Summary: Apple Safari Web Browser is prone to a denial of service (DoS) vulnerability. Vulnerability Insight: Improper parsing of XML documents while persuading a victim to open a specially-crafted XML document containing an overly large number of nested elements crashes the Browser. Vulnerability Impact: Attacker could exploit this vulnerability to cause the browser to crash. Affected Software/OS: Apple Safari version 4 beta and prior on Windows. Solution: No known solution was made available for at least one year since the disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2009-1233 BugTraq ID: 34318 http://www.securityfocus.com/bid/34318 https://www.exploit-db.com/exploits/8325 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5559 XForce ISS Database: safari-xml-dos(49527) https://exchange.xforce.ibmcloud.com/vulnerabilities/49527
Copyright	Copyright (C) 2009 Greenbone AG