Skip to main content

Apple Safari Multiple Vulnerabilities

Last Update Date: 28 Jan 2011 Release Date: 13 Nov 2009 5400 Views

RISK: Medium Risk

Multiple vulnerabilities have been identified in Apple Safari, which could be exploited by attackers to disclose sensitive information, bypass security restrictions, cause a denial of service or compromise an affected system.

1. An integer overflow error in ColorSync when processing images with a malformed color profile, which could be exploited by attackers to crash an affected browser or execute arbitrary code.

2. The errors in libxml, which could be exploited to cause a denial of service or potentially execute arbitrary code. For additional information, see : VUPEN/ADV-2009-2221

3. The errors when handling navigations initiated via the "Open Image in New Tab", "Open Image in New Window", or "Open Link in New Tab" shortcut menu options, which could allow malicious web sites to load a local HTML file, leading to the disclosure of sensitive information.

4. An error in WebKit's implementation of Cross-Origin Resource Sharing, which could facilitate cross-site request forgery attacks.

5. The errors in WebKit's handling of FTP directory listings, which could be exploited to disclosure certain information, crash an affected browser, or execute arbitrary code by tricking a user into connecting to a malicious FTP server.

6. Due to WebKit not issuing a resource load callback to determine if a resource, pointed by an HTML 5 Media Element, should be loaded, which may result in undesired requests to remote servers (e.g. the sender of an HTML email message could exploit this issue to determine if the message was read).


System / Technologies affected

  • Apple Safari versions prior to 4.0.4

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

Upgrade to Apple Safari version 4.0.4 :
http://support.apple.com/downloads/Safari_4


Vulnerability Identifier


Source