Apple Safari Multiple Vulnerabilities

Last Update Date: 19 Mar 2015 09:36 Release Date: 19 Mar 2015 3107 Views

RISK: High Risk

TYPE: Clients - Browsers

Multiple vulnerabilities have been identified in Apple Safari, which can be exploited by remote attacker to execute arbitrary code or prevent users from discerning a phishing attack on an affected system.

Impact

Remote Code Execution
Spoofing

System / Technologies affected

Versions prior to

Safari 8.0.4 for OS X Mountain Lion v10.8.5
Safari 7.1.4 for OS X Mavericks v10.9.5
Safari 6.2.4 for OS X Yosemite v10.10.2

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

The vendor has issued a fix:
- Safari 8.0.4 for OS X Mountain Lion v10.8.5
- Safari 7.1.4 for OS X Mavericks v10.9.5
- Safari 6.2.4 for OS X Yosemite v10.10.2

Vulnerability Identifier

Source

US-CERT