SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Web Browser)  >   Apple Safari Vendors:   Apple
Apple Safari Text Node Use-After-Free Lets Remote Users Execute Arbitrary Code
SecurityTracker Alert ID:  1025363
SecurityTracker URL:  http://securitytracker.com/id/1025363
CVE Reference:   CVE-2011-1344   (Links to External Site)
Date:  Apr 14 2011
Impact:   Execution of arbitrary code via network, User access via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): prior to 5.0.5
Description:   A vulnerability was reported in Apple Safari. A remote user can cause arbitrary code to be executed on the target user's system.

A remote user can create specially crafted HTML that, when loaded by the target user, will trigger a use-after-free in the processing of text nodes and execute arbitrary code on the target system. The code will run with the privileges of the target user.

VUPEN Security working with TippingPoint's Zero Day Initiative and Martin Barbella reported this vulnerability.

Impact:   A remote user can create HTML that, when loaded by the target user, will execute arbitrary code on the target user's system.
Solution:   The vendor has issued a fix (5.0.5), available via the Apple Software Update application, or Apple's Safari download site at:

http://www.apple.com/safari/download/

Safari for Mac OS X v10.6.5 and later
The download file is named: Safari5.0.5SnowLeopard.dmg
Its SHA-1 digest is: 631cd280171938491c45a905e24904e7739eaefe

Safari for Mac OS X v10.5.8
The download file is named: Safari5.0.5Leopard.dmg
Its SHA-1 digest is: 661cdb68ca33b8eb41f20be837eb6a1c12289876

Safari for Windows 7, Vista or XP
The download file is named: SafariSetup.exe
Its SHA-1 digest is: c2c6b1f5c04af7f24d2474e4b2597d40dddaeca2

Safari for Windows 7, Vista or XP from the Microsoft Choice Screen
The download file is named: Safari_Setup.exe
Its SHA-1 digest is: e245b935fc0aaec31a512fa0ab9dce2dcec0b2f8

Safari+QuickTime for Windows 7, Vista or XP
The file is named: SafariQuickTimeSetup.exe
Its SHA-1 digest is: 5f1455cd2290e9ced03dfbb6ea57b4c2931446a5

The vendor's advisory is available at:

http://support.apple.com/kb/HT4596

Vendor URL:  support.apple.com/kb/HT4596 (Links to External Site)
Cause:   Access control error
Underlying OS:  UNIX (macOS/OS X), Windows (7), Windows (Vista), Windows (XP)

Message History:   This archive entry has one or more follow-up message(s) listed below.
Apr 14 2011 (Apple Issues Fix for iOS) Apple Safari Text Node Use-After-Free Lets Remote Users Execute Arbitrary Code
Apple has issued a fix for iOS (iPhone 3GS and later, iPod touch, and iPad).
Apr 15 2011 (Apple Issues Fix for iOS) Apple Safari Text Node Use-After-Free Lets Remote Users Execute Arbitrary Code
Apple has issued a fix for iOS (iPhone 4 CDMA).
Apr 18 2011 (Apple Issues Fix for iTunes) Apple Safari Text Node Use-After-Free Lets Remote Users Execute Arbitrary Code
Apple has issued a fix for iTunes.



 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2020, SecurityGlobal.net LLC