Download
| Alert*
oval:org.secpod.oval:def:17268
The host is installed with Apple Safari before 4.0 and is prone to a CRLF injection vulnerability. A flaw is present in the application, which fails to properly handle XMLHttpRequest headers in WebKit. Successful exploitation could allow attackers to bypass the same-origin policy by issuing an XMLHt ... oval:org.secpod.oval:def:600411 Several vulnerabilities have been discovered in webkit, a Web content engine library for Gtk+. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2009-0945 Array index error in the insertItemBefore method in WebKit, allows remote attackers to execute arbitrary co ... oval:org.mitre.oval:def:7247 Several vulnerabilities have been discovered in WebKit, a Web content engine library for Gtk+. The Common Vulnerabilities and Exposures project identifies the following problems: Array index error in the insertItemBefore method in WebKit, allows remote attackers to execute arbitrary code via a docum ... oval:org.secpod.oval:def:17282 The host is missing a security update according to Apple advisory, APPLE-SA-2009-06-08-1. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to execute arbitrary code or c ... |