Test ID:	1.3.6.1.4.1.25623.1.0.800493
Category:	General
Title:	Apple Safari Webkit Multiple Vulnerabilities
Summary:	This host is installed with Apple Safari Web Browser and is prone; to multiple vulnerabilities.
Description:	Summary: This host is installed with Apple Safari Web Browser and is prone to multiple vulnerabilities. Vulnerability Insight: Please see the references for more information about the vulnerabilities. Vulnerability Impact: Successful exploitation will let the attacker execute arbitrary code, bypass security restrictions, sensitive information disclosure, and can cause other attacks. Affected Software/OS: Apple Safari version prior to 4.0.5 (5.31.22.7) on Windows. Solution: Upgrade to Apple Safari version 4.0.5. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2010-0040 http://lists.apple.com/archives/security-announce/2010/Mar/msg00000.html http://lists.apple.com/archives/security-announce/2010//Mar/msg00003.html BugTraq ID: 38671 http://www.securityfocus.com/bid/38671 BugTraq ID: 38674 http://www.securityfocus.com/bid/38674 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6741 http://www.securitytracker.com/id?1023706 http://secunia.com/advisories/39135 XForce ISS Database: safari-colorsync-bo(56826) https://exchange.xforce.ibmcloud.com/vulnerabilities/56826 Common Vulnerability Exposure (CVE) ID: CVE-2010-0041 http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html http://lists.apple.com/archives/security-announce/2010/Jun/msg00003.html BugTraq ID: 38676 http://www.securityfocus.com/bid/38676 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6885 Common Vulnerability Exposure (CVE) ID: CVE-2010-0042 http://lists.apple.com/archives/security-announce/2010//Nov/msg00003.html BugTraq ID: 38677 http://www.securityfocus.com/bid/38677 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7561 http://secunia.com/advisories/42314 Common Vulnerability Exposure (CVE) ID: CVE-2010-0043 BugTraq ID: 38673 http://www.securityfocus.com/bid/38673 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6901 Common Vulnerability Exposure (CVE) ID: CVE-2010-0044 BugTraq ID: 38675 http://www.securityfocus.com/bid/38675 http://osvdb.org/62937 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7051 XForce ISS Database: safari-pubsub-security-bypass(56830) https://exchange.xforce.ibmcloud.com/vulnerabilities/56830 Common Vulnerability Exposure (CVE) ID: CVE-2010-0045 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6817 Common Vulnerability Exposure (CVE) ID: CVE-2010-0046 http://lists.fedoraproject.org/pipermail/package-announce/2010-May/041383.html http://lists.fedoraproject.org/pipermail/package-announce/2010-May/041432.html http://lists.fedoraproject.org/pipermail/package-announce/2010-May/041436.html http://www.mandriva.com/security/advisories?name=MDVSA-2011:039 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7053 http://www.securitytracker.com/id?1023708 http://secunia.com/advisories/41856 http://secunia.com/advisories/43068 SuSE Security Announcement: SUSE-SR:2011:002 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html http://www.ubuntu.com/usn/USN-1006-1 http://www.vupen.com/english/advisories/2010/2722 http://www.vupen.com/english/advisories/2011/0212 http://www.vupen.com/english/advisories/2011/0552 Common Vulnerability Exposure (CVE) ID: CVE-2010-0047 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6882 Common Vulnerability Exposure (CVE) ID: CVE-2010-0048 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7135 Common Vulnerability Exposure (CVE) ID: CVE-2010-0049 http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=863 http://osvdb.org/62942 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6810 Common Vulnerability Exposure (CVE) ID: CVE-2010-0050 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7587 XForce ISS Database: safari-nested-html-code-exec(56836) https://exchange.xforce.ibmcloud.com/vulnerabilities/56836 Common Vulnerability Exposure (CVE) ID: CVE-2010-0051 http://code.google.com/p/chromium/issues/detail?id=9877 http://scarybeastsecurity.blogspot.com/2009/12/generic-cross-browser-cross-domain.html http://websec.sv.cmu.edu/css/css.pdf http://osvdb.org/62944 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7554 XForce ISS Database: safari-stylesheet-info-disclosure(56837) https://exchange.xforce.ibmcloud.com/vulnerabilities/56837 Common Vulnerability Exposure (CVE) ID: CVE-2010-0052 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7403 Common Vulnerability Exposure (CVE) ID: CVE-2010-0053 http://osvdb.org/62948 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7323 Common Vulnerability Exposure (CVE) ID: CVE-2010-0054 http://osvdb.org/62949 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6915
Copyright	Copyright (C) 2010 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.