This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:apple:safari:3.0.3::mac
Detail
VendorAppleFirst view 2008-03-18
ProductSafariLast view2016-07-21
Version3.0.3TypeApplication
Editionmac 
Language 
Update 
 
CPE Productcpe:/a:apple:safari

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
4.32016-07-21CVE-2016-4651NetworkMediumNone Requ...
6.82016-07-21CVE-2016-4624NetworkMediumNone Requ...
6.82016-07-21CVE-2016-4623NetworkMediumNone Requ...
6.82016-07-21CVE-2016-4622NetworkMediumNone Requ...
4.32016-07-21CVE-2016-4590NetworkMediumNone Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
52016-06-19CVE-2016-1864NetworkLowNone Requ...
6.82016-05-20CVE-2016-1859NetworkMediumNone Requ...
4.32016-05-20CVE-2016-1858NetworkMediumNone Requ...
6.82016-05-20CVE-2016-1857NetworkMediumNone Requ...
6.82016-05-20CVE-2016-1856NetworkMediumNone Requ...
6.82016-05-20CVE-2016-1855NetworkMediumNone Requ...
6.82016-05-20CVE-2016-1854NetworkMediumNone Requ...
2.12016-05-20CVE-2016-1849LocalLowNone Requ...
5.82016-03-23CVE-2016-1786NetworkMediumNone Requ...
4.32016-03-23CVE-2016-1785NetworkMediumNone Requ...
4.32016-03-23CVE-2016-1784NetworkMediumNone Requ...
9.32016-03-23CVE-2016-1783NetworkMediumNone Requ...
4.32016-03-23CVE-2016-1782NetworkMediumNone Requ...
4.32016-03-23CVE-2016-1781NetworkMediumNone Requ...
4.32016-03-23CVE-2016-1779NetworkMediumNone Requ...
9.32016-03-23CVE-2016-1778NetworkMediumNone Requ...
4.32016-03-23CVE-2016-1772NetworkMediumNone Requ...
7.12016-03-23CVE-2016-1771NetworkMediumNone Requ...
102016-03-23CVE-2016-1762NetworkLowNone Requ...

CWE : Common Weakness Enumeration

%idName
46% (224)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
15% (73)CWE-399Resource Management Errors
9% (45)CWE-200Information Exposure
6% (29)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
6% (29)CWE-20Improper Input Validation
Hide | Show 14 More...
%idName
5% (24)CWE-264Permissions, Privileges, and Access Controls
2% (13)CWE-94Failure to Control Generation of Code ('Code Injection')
2% (10)CWE-189Numeric Errors
1% (7)CWE-310Cryptographic Issues
1% (5)CWE-254Security Features
0% (4)CWE-287Improper Authentication
0% (3)CWE-255Credentials Management
0% (3)CWE-19Data Handling
0% (2)CWE-362Race Condition
0% (2)CWE-284Access Control (Authorization) Issues
0% (2)CWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path ...
0% (2)CWE-17Code
0% (1)CWE-352Cross-Site Request Forgery (CSRF)
0% (1)CWE-16Configuration

Oval Markup Language : Definitions

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalIDName
oval:org.mitre.oval:def:24080WebKit vulnerability in Apple Safari before 6.0 does not properly handle drag...
oval:org.mitre.oval:def:23787WebKit vulnerability in Apple Safari before 6.0 allows remote attackers to ex...
oval:org.mitre.oval:def:6810WebKit Right-to-Left Displayed Text Handling Memory Corruption Vulnerability
oval:org.mitre.oval:def:24187WebKit vulnerability in Apple Safari before 6.0 allows remote attackers to ex...
oval:org.mitre.oval:def:24264WebKit vulnerability in Apple Safari before 6.0 allows remote attackers to ex...
Hide | Show 20 More...
idName
oval:org.mitre.oval:def:6656WebKit Malformed URL Handling Cross-site Scripting Vulnerability
oval:org.mitre.oval:def:9484WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS...
oval:org.mitre.oval:def:13862USN-822-1 -- kde4libs, kdelibs vulnerabilities
oval:org.mitre.oval:def:22057ELSA-2009:1127: kdelibs security update (Critical)
oval:org.mitre.oval:def:29301RHSA-2009:1127 -- kdelibs security update (Critical)
oval:org.mitre.oval:def:7403WebKit HTML Elements Callback Use-After-Free Error Remote Code Execution Vuln...
oval:org.mitre.oval:def:24365WebKit vulnerability in Apple Safari before 6.0 allows remote attackers to ex...
oval:org.mitre.oval:def:7606WebKit Hover Event Handling Remote Code Execution Vulnerability
oval:org.mitre.oval:def:12160Denial of service attack (during processing of editing commands) in WebKit in...
oval:org.mitre.oval:def:14098WebKit, as used in Apple Safari 5.1.1 and earlier and Google Chrome 15 and ea...
oval:org.mitre.oval:def:24246WebKit vulnerability in Apple Safari before 6.0 allows remote attackers to ex...
oval:org.mitre.oval:def:24147WebKit vulnerability in Apple Safari before 6.0 allows remote attackers to ex...
oval:org.mitre.oval:def:24281WebKit vulnerability in Apple Safari before 6.0 allows remote attackers to ex...
oval:org.mitre.oval:def:23935WebKit vulnerability in Apple Safari before 6.0 allows remote attackers to ex...
oval:org.mitre.oval:def:13253USN-1016-1 -- libxml2 vulnerability
oval:org.mitre.oval:def:12709DSA-2128-1 libxml2 -- invalid memory access
oval:org.mitre.oval:def:12148Vulnerability in libxml2 in Google Chrome before 7.0.517.44
oval:org.mitre.oval:def:24247WebKit vulnerability in Apple Safari before 6.0 allows remote attackers to ex...
oval:org.mitre.oval:def:24305Incomplete blacklist vulnerability in WebKit in Apple Safari before 6.0 allow...
oval:org.mitre.oval:def:6885Apple Safari BMP Image Uninitialized Memory Information Disclosure Vulnerability

SAINT Exploits

DescriptionLink
Safari WebKit floating point number buffer overflowMore info here
Apple Safari libxslt File CreateMore info here

Open Source Vulnerability Database (OSVDB)

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
77621Google Chrome WebKit Cache Objects Image Handling Browsing History Disclosure
77618Apple Safari WebKit Cache Objects Image Handling Browsing History Disclosure
76391Apple Safari WebKit Private Browsing Mode Cookie Block Bypass
76390Apple Safari SSL Certificate Handling Unitialized Memory Access Remote Code E...
76389Apple Safari file:// URL Handling Remote Code Execution
Hide | Show 20 More...
idDescription
76388Apple Safari safari-extension:// URL Handling Traversal Remote Code Execution
76353Apple iOS WebKit Inactive DOM Window Handling XSS
75255Apple Safari WebKit HTML5 Drop and Drag Content Dragging Remote Information D...
75254Apple Safari / iOS WebKit Attr.style Accessor Parsing Same Origin Policy Bypa...
75253Apple Safari / iOS WebKit HTTP Basic Authentication Authorization HTTP Header...
75013Apple Safari / iOS WebKit Cached Resources Cache Poisoning Remote DoS
74019Apple Safari WebKit RSS Feed URL Handling Arbitrary File Disclosure
74018Apple Safari WebKit Cross-origin Username URL Handling XSS
74017Apple Safari WebKit libxslt Unspecified Arbitrary File Creation
74016Apple Safari WebKit Unspecified Memory Corruption (2011-1797)
74015Apple Safari WebKit Unspecified Memory Corruption (2011-1462)
74014Apple Safari WebKit Unspecified Memory Corruption (2011-1457)
74013Apple Safari WebKit Unspecified Memory Corruption (2011-1453)
74012Apple Safari WebKit Unspecified Memory Corruption (2011-1288)
74011Apple Safari WebKit Unspecified Memory Corruption (2011-0255)
74010Apple Safari WebKit Unspecified Memory Corruption (2011-0254)
74009Apple Safari WebKit Unspecified Memory Corruption (2011-0253)
74008Apple Safari WebKit SVG Tag animVal Property Parsing Memory Corruption
74007Apple Safari WebKit Unspecified Memory Corruption (2011-0238)
74006Apple Safari WebKit Unspecified Memory Corruption (2011-0237)

Milw0rm Exploits

idDescription
2009-06-09Apple Safari <= 3.2.x (XXE attack) Local File Theft Vulnerability

ExploitDB Exploits

idDescription
28081Apple Safari 6.0.1 for iOS 6.0 and OS X 10.7/8 - Heap Buffer Overflow
22406Konqueror 4.7.3 Memory Corruption
18446Webkit normalize bug for android 2.2 (CVE-2010-1759)
17986Apple Safari file:// Arbitrary Code Execution
17575Safari 5.0.5 SVG Remote Code Execution Exploit (DEP bypass)
Hide | Show 1 More...
idDescription
17567Safari SVG DOM processing PoC

OpenVAS Exploits

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2012-11-19Name : Fedora Update for kdelibs FEDORA-2012-17388
File : nvt/gb_fedora_2012_17388_kdelibs_fc16.nasl
2012-11-02Name : Apple Safari Multiple Vulnerabilities (APPLE-SA-2012-09-19-3)
File : nvt/gb_apple_safari_mult_vuln_nov12_macosx.nasl
2012-10-26Name : Ubuntu Update for webkit USN-1617-1
File : nvt/gb_ubuntu_USN_1617_1.nasl
2012-10-03Name : Fedora Update for libxml2 FEDORA-2012-13824
File : nvt/gb_fedora_2012_13824_libxml2_fc16.nasl
2012-10-01Name : Apple Safari Multiple Vulnerabilities - Oct 2012 (Mac OS X)
File : nvt/gb_apple_safari_mult_vuln_oct12_macosx.nasl
Hide | Show 20 More...
idDescription
2012-09-27Name : Fedora Update for libxml2 FEDORA-2012-13820
File : nvt/gb_fedora_2012_13820_libxml2_fc17.nasl
2012-09-17Name : Apple iTunes Multiple Vulnerabilities - Sep 12 (Windows)
File : nvt/gb_apple_itunes_mult_vuln_sep12_win.nasl
2012-08-09Name : Ubuntu Update for webkit USN-1524-1
File : nvt/gb_ubuntu_USN_1524_1.nasl
2012-08-01Name : Apple Safari Multiple Vulnerabilities - Aug 2012 (Windows)
File : nvt/gb_apple_safari_mult_vuln_aug12_win.nasl
2012-07-30Name : CentOS Update for libxml2 CESA-2012:0016 centos4
File : nvt/gb_CESA-2012_0016_libxml2_centos4.nasl
2012-07-30Name : CentOS Update for libxml2 CESA-2012:0017 centos5
File : nvt/gb_CESA-2012_0017_libxml2_centos5.nasl
2012-07-30Name : Apple Safari Multiple Vulnerabilities - July 2012 (Mac OS X)
File : nvt/gb_apple_safari_mult_vuln_jul12_macosx.nasl
2012-07-13Name : VMSA-2012-0012 VMware ESXi update addresses several security issues.
File : nvt/gb_VMSA-2012-0012.nasl
2012-07-09Name : RedHat Update for libxml2 RHSA-2011:1749-03
File : nvt/gb_RHSA-2011_1749-03_libxml2.nasl
2012-06-05Name : RedHat Update for webkitgtk RHSA-2011:0177-01
File : nvt/gb_RHSA-2011_0177-01_webkitgtk.nasl
2012-05-24Name : Apple Safari Multiple Vulnerabilities - Oct 2011 (Windows)
File : nvt/secpod_apple_safari_mult_vuln_win_oct11.nasl
2012-05-18Name : Mac OS X Multiple Vulnerabilities (2012-002)
File : nvt/gb_macosx_su12-002.nasl
2012-05-18Name : Apple Safari Webkit Multiple Vulnerabilities - May 12 (Mac OS X)
File : nvt/gb_apple_safari_webkit_mult_vuln_macosx_may12.nasl
2012-05-18Name : Apple Safari Webkit Multiple Vulnerabilities - May 12 (Windows)
File : nvt/gb_apple_safari_webkit_mult_vuln_win_may12.nasl
2012-04-02Name : Fedora Update for kdelibs FEDORA-2011-16151
File : nvt/gb_fedora_2011_16151_kdelibs_fc16.nasl
2012-03-29Name : Fedora Update for kdelibs FEDORA-2012-3483
File : nvt/gb_fedora_2012_3483_kdelibs_fc15.nasl
2012-03-13Name : Apple Safari Webkit Multiple Vulnerabilities - March12 (Mac OS X)
File : nvt/gb_apple_safari_webkit_mult_vuln_mar12_macosx.nasl
2012-03-13Name : Apple Safari Webkit Multiple Vulnerabilities - March12 (Win)
File : nvt/gb_apple_safari_webkit_mult_vuln_mar12_win.nasl
2012-02-12Name : Gentoo Security Advisory GLSA 201110-26 (libxml2)
File : nvt/glsa_201110_26.nasl
2012-02-11Name : Debian Security Advisory DSA 2394-1 (libxml2)
File : nvt/deb_2394_1.nasl

Information Assurance Vulnerability Management (IAVM)

idDescription
2015-A-0222Multiple Security Vulnerabilities in Apple iOS
Severity : Category I - VMSKEY : V0061471
2015-A-0199Multiple Vulnerabilities in Apple Mac OS X
Severity : Category I - VMSKEY : V0061337
2014-B-0083Multiple Vulnerabilities in Apple iOS
Severity : Category I - VMSKEY : V0052903
2014-B-0048Multiple Security Vulnerabilities in Apple iOS
Severity : Category I - VMSKEY : V0050015
2014-B-0024Multiple Security Vulnerabilities in Apple iOS
Severity : Category I - VMSKEY : V0046157
Hide | Show 2 More...
idDescription
2012-A-0153Multiple Vulnerabilities in VMware ESX 4.0 and ESXi 4.0
Severity : Category I - VMSKEY : V0033884
2012-A-0073Multiple Vulnerabilities in VMware ESXi 4.1 and ESX 4.1
Severity : Category I - VMSKEY : V0032171

Snort® IPS/IDS

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
DateDescription
2015-08-04Apple Safari URI spoofing attempt
RuleID : 35045 - Type : BROWSER-WEBKIT - Revision : 1
2015-08-04Apple Safari URI spoofing attempt
RuleID : 35044 - Type : BROWSER-WEBKIT - Revision : 1
2014-03-08Apple Safari Webkit attribute child removal code execution attempt
RuleID : 29623 - Type : BROWSER-WEBKIT - Revision : 1
2014-01-10Apple Safari Webkit libxslt arbitrary file creation attempt
RuleID : 26592 - Type : BROWSER-WEBKIT - Revision : 4
2014-01-10Apple Safari SVG Markers Memory Use-After-Free attempt
RuleID : 26259 - Type : BROWSER-WEBKIT - Revision : 5
Hide | Show 20 More...
DateDescription
2014-01-10Apple Safari SVG Markers Memory Use-After-Free attempt
RuleID : 26258 - Type : BROWSER-WEBKIT - Revision : 4
2014-01-10WebKit button column memory corruption attempt
RuleID : 23805 - Type : BROWSER-WEBKIT - Revision : 8
2014-01-10Apple Safari innerHTML use after free exploit attempt
RuleID : 21189 - Type : BROWSER-WEBKIT - Revision : 3
2014-01-10Apple Safari Webkit libxslt arbitrary file creation attempt
RuleID : 20593 - Type : BROWSER-WEBKIT - Revision : 10
2014-01-10Apple Safari Webkit SVG memory corruption attempt
RuleID : 19807 - Type : BROWSER-WEBKIT - Revision : 9
2014-01-10Apple Safari Webkit SVG memory corruption attempt
RuleID : 19806 - Type : BROWSER-WEBKIT - Revision : 5
2014-01-10Apple Safari CSS font format corruption attempt
RuleID : 19099 - Type : BROWSER-WEBKIT - Revision : 11
2014-01-10Apple Safari Webkit ContentEditable code exeuction attempt
RuleID : 19098 - Type : BROWSER-WEBKIT - Revision : 10
2014-01-10Apple Safari Webkit ContentEditable code execution attempt
RuleID : 19097 - Type : BROWSER-WEBKIT - Revision : 11
2014-01-10Apple Safari Webkit CSS Charset Text transformation code execution attempt
RuleID : 19096 - Type : BROWSER-WEBKIT - Revision : 10
2014-01-10Apple Safari Webkit CSS Charset Text transformation code execution attempt
RuleID : 19095 - Type : BROWSER-WEBKIT - Revision : 10
2014-01-10Apple Safari Webkit button first-letter style rendering code execution attempt
RuleID : 18973 - Type : BROWSER-WEBKIT - Revision : 9
2014-01-10Apple Safari Webkit attribute child removal code execution attempt
RuleID : 18958 - Type : BROWSER-WEBKIT - Revision : 11
2014-01-10Apple Safari Webkit attribute child removal code execution attempt
RuleID : 18957 - Type : BROWSER-WEBKIT - Revision : 10
2014-01-10Apple Safari WebKit Rendering Counter Code Execution
RuleID : 18903 - Type : BROWSER-WEBKIT - Revision : 10
2014-01-10Apple Safari Webkit floating point buffer overflow attempt
RuleID : 18295 - Type : BROWSER-WEBKIT - Revision : 4
2014-01-10Apple Safari Webkit floating point buffer overflow attempt
RuleID : 18294 - Type : BROWSER-WEBKIT - Revision : 5
2014-01-10file URI scheme attempt
RuleID : 16642 - Type : POLICY-OTHER - Revision : 11
2014-01-10Apple Safari image use after reparent attempt
RuleID : 16632 - Type : BROWSER-WEBKIT - Revision : 12
2014-01-10Apple Safari image use after remove attempt
RuleID : 16631 - Type : BROWSER-WEBKIT - Revision : 11

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2016-09-15Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-3079-1.nasl - Type : ACT_GATHER_INFO
2016-09-02Name : The remote Fedora host is missing a security update.
File : fedora_2016-d957ffbac1.nasl - Type : ACT_GATHER_INFO
2016-08-29Name : The remote Fedora host is missing a security update.
File : fedora_2016-4728dfe3ec.nasl - Type : ACT_GATHER_INFO
2016-08-29Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_e195679d045b4953bb33be0073ba2ac6.nasl - Type : ACT_GATHER_INFO
2016-08-29Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2016-1604-1.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2016-07-21Name : The remote Apple TV device is affected by multiple vulnerabilities.
File : appletv_9_2_2.nasl - Type : ACT_GATHER_INFO
2016-07-21Name : The remote host is missing a Mac OS X security update that fixes multiple vul...
File : macosx_10_11_6.nasl - Type : ACT_GATHER_INFO
2016-07-19Name : The remote host has a web browser installed that is affected by multiple vuln...
File : macosx_Safari9_1_2.nasl - Type : ACT_GATHER_INFO
2016-07-15Name : The remote Amazon Linux AMI host is missing a security update.
File : ala_ALAS-2016-719.nasl - Type : ACT_GATHER_INFO
2016-07-14Name : The remote Fedora host is missing a security update.
File : fedora_2016-e46b75e5df.nasl - Type : ACT_GATHER_INFO
2016-07-14Name : The remote Fedora host is missing a security update.
File : fedora_2016-f5107c318e.nasl - Type : ACT_GATHER_INFO
2016-07-14Name : The remote Fedora host is missing a security update.
File : fedora_2016-c1f4334ded.nasl - Type : ACT_GATHER_INFO
2016-06-24Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2016-1292.nasl - Type : ACT_GATHER_INFO
2016-06-24Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2016-1292.nasl - Type : ACT_GATHER_INFO
2016-06-24Name : The remote OracleVM host is missing one or more security updates.
File : oraclevm_OVMSA-2016-0087.nasl - Type : ACT_GATHER_INFO
2016-06-24Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2016-1292.nasl - Type : ACT_GATHER_INFO
2016-06-24Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20160623_libxml2_on_SL6_x.nasl - Type : ACT_GATHER_INFO
2016-06-17Name : The remote openSUSE host is missing a security update.
File : openSUSE-2016-733.nasl - Type : ACT_GATHER_INFO
2016-06-17Name : The remote openSUSE host is missing a security update.
File : openSUSE-2016-734.nasl - Type : ACT_GATHER_INFO
2016-06-17Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2016-1538-1.nasl - Type : ACT_GATHER_INFO
2016-06-07Name : The remote Ubuntu host is missing a security-related patch.
File : ubuntu_USN-2994-1.nasl - Type : ACT_GATHER_INFO
2016-06-06Name : The remote Debian host is missing a security update.
File : debian_DLA-503.nasl - Type : ACT_GATHER_INFO
2016-06-03Name : The remote Debian host is missing a security-related update.
File : debian_DSA-3593.nasl - Type : ACT_GATHER_INFO
2016-05-24Name : The remote device is affected by multiple vulnerabilities.
File : appletv_9_2_1.nasl - Type : ACT_GATHER_INFO
2016-05-18Name : The remote host has a web browser installed that is affected by multiple vuln...
File : macosx_Safari9_1_1.nasl - Type : ACT_GATHER_INFO