Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple safari 0.9 vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2016-4760
WebKit in Apple iOS prior to 10, iTunes prior to 12.5.1 on Windows, and Safari prior to 10 allows remote malicious users to conduct DNS rebinding attacks against non-HTTP Safari sessions by leveraging HTTP/0.9 support.
Apple Itunes
Apple Iphone Os
Apple Safari
6.1
CVSSv3
CVE-2016-4651
Cross-site scripting (XSS) vulnerability in the WebKit JavaScript bindings in Apple iOS prior to 9.3.3 and Safari prior to 9.1.2 allows remote malicious users to inject arbitrary web script or HTML via a crafted HTTP/0.9 response, related to a "cross-protocol cross-site scri...
Apple Iphone Os
Apple Safari
NA
CVE-2009-3384
Multiple unspecified vulnerabilities in WebKit in Apple Safari prior to 4.0.4 on Windows allow remote FTP servers to execute arbitrary code, cause a denial of service (application crash), or obtain sensitive information via a crafted directory listing in a reply.
Apple Safari 1.0.1
Apple Safari 1.0.0b2
Apple Safari 2.0
Apple Safari 2
Apple Safari 1.2.3
Apple Safari 1.2.2
Apple Safari 3
Apple Safari 2.0 Pre
Apple Safari 2.0.3
Apple Safari 3.0.3
Apple Safari 3.0.2b
Apple Safari 3.1.2
Apple Safari 3.2
Apple Safari 4.0.1
Apple Safari 4.0.2
Apple Safari 1.0
Apple Safari 1.0.3
Apple Safari 1.0.2
Apple Safari 0.8
Apple Safari 2.0.0
Apple Safari 1.2.5
Apple Safari 1.2.4
NA
CVE-2009-2841
The HTMLMediaElement::loadResource function in html/HTMLMediaElement.cpp in WebCore in WebKit before r49480, as used in Apple Safari prior to 4.0.4 on Mac OS X, does not perform the expected callbacks for HTML 5 media elements that have external URLs for media resources, which al...
Apple Safari 1.0
Apple Safari 1.0.3
Apple Safari 0.9
Apple Safari 0.8
Apple Safari 1.3
Apple Safari 1.2.5
Apple Safari 3.0.0b
Apple Safari 3.0.0
Apple Safari 1.0.0b2
Apple Safari 1.0.0b1
Apple Safari 2
Apple Safari 1.3.2
Apple Safari 1.2.2
Apple Safari 1.2.1
Apple Safari 2.0 Pre
Apple Safari 2.0.4 419.3
Apple Safari 2.0.3
Apple Safari 2.0.2
Apple Safari 3.0.2b
Apple Safari 3.0.2
Apple Safari 3.0.1b
Apple Safari 3.2
NA
CVE-2009-3455
Apple Safari, possibly prior to 4.0.3, on Mac OS X does not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle malicious users to spoof arbitrary SSL servers via a crafte...
Apple Safari 4.0.2
Apple Safari 4.0.1
Apple Safari 4.0.0b
Apple Safari 4.0
Apple Safari 3.0
Apple Safari 3.0.4
Apple Safari 0.8
Apple Safari 1.3.1
Apple Safari 1.3.2
Apple Safari 1.3
Apple Safari 2.0.2
Apple Safari 3.2.1
Apple Safari 3.1
Apple Safari 3.1.2
Apple Safari 1.1
Apple Safari 1.2
Apple Safari 1.2.0
Apple Safari 1.2.1
Apple Safari 3.0.0
Apple Safari 3.0.1
Apple Safari 3.0.3
Apple Safari
NA
CVE-2009-2804
Integer overflow in ColorSync in Apple Mac OS X 10.4.11 and 10.5.8, and Safari prior to 4.0.4 on Windows, allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted ColorSync profile embedded in an image, leading to a he...
Apple Mac Os X 10.4.11
Apple Mac Os X Server 10.4.11
Apple Mac Os X 10.5.8
Apple Mac Os X Server 10.5.8
Apple Safari 1.1.0
Apple Safari 1.0
Apple Safari 1.0.0
Apple Safari 1.3.1
Apple Safari 1.3.0
Apple Safari 1.2
Apple Safari 3.0.1
Apple Safari 2.0.4
Apple Safari 2.0.3 417.9.3
Apple Safari 2.0.1
Apple Safari 3.0.4b
Apple Safari 3.1
Apple Safari 3.2.1
Apple Safari 3.2.2
Apple Safari
Apple Safari 1.0.3
Apple Safari 0.9
Apple Safari 0.8
NA
CVE-2009-2195
Buffer overflow in WebKit in Apple Safari prior to 4.0.3 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via crafted floating-point numbers.
Apple Safari 1.0.0
Apple Safari 1.0.0b1
Apple Safari 1.0.3
Apple Safari 1.1
Apple Safari 1.2.3
Apple Safari 1.2.4
Apple Safari 1.3.2
Apple Safari 2.0
Apple Safari 2.0.3
Apple Safari 2.0.3 417.9.3
Apple Safari 3.0.0b
Apple Safari 3.0.1
Apple Safari 3.0.3b
Apple Safari 3.0.4
Apple Safari 4beta
Apple Safari 3.2
Apple Safari 3.1.2
Apple Safari
Apple Safari 0.9
Apple Safari 1.0
Apple Safari 1.2.1
Apple Safari 1.2.2
1 EDB exploit
NA
CVE-2009-2200
WebKit in Apple Safari prior to 4.0.3 does not properly restrict the URL scheme of the pluginspage attribute of an EMBED element, which allows user-assisted remote malicious users to launch arbitrary file: URLs and obtain sensitive information via a crafted HTML document.
Apple Safari 1.0.0b1
Apple Safari 1.0.0b2
Apple Safari 1.0.3
Apple Safari 1.1
Apple Safari 1.2.3
Apple Safari 1.2.4
Apple Safari 1.2.5
Apple Safari 2.0
Apple Safari 2.0.0
Apple Safari 2.0.3
Apple Safari 2.0.3 417.9.3
Apple Safari 3.0.1
Apple Safari 3.0.4
Apple Safari 4beta
Apple Safari 3.2
Apple Safari 3.1.2
Apple Safari 1.0
Apple Safari 1.0.0
Apple Safari 1.2.1
Apple Safari 1.2.2
Apple Safari 1.3.2
Apple Safari 3.0
NA
CVE-2009-2468
Integer overflow in Apple CoreGraphics, as used in Safari prior to 4.0.3, Mozilla Firefox prior to 3.0.12, and Mac OS X 10.4.11 and 10.5.8, allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a long text run that t...
Mozilla Firefox 2.0.0.12
Mozilla Firefox 3.0.1
Mozilla Firefox 2.0
Mozilla Firefox 0.9.3
Mozilla Firefox 0.9
Mozilla Firefox 1.0.2
Mozilla Firefox 1.0.8
Mozilla Firefox 2.0.0.21
Mozilla Firefox 2.0.0.15
Mozilla Firefox 0.6.1
Mozilla Firefox 0.6
Mozilla Firefox 0.1
Mozilla Firefox 3.0.9
Mozilla Firefox 2.0.0.7
Mozilla Firefox 1.5.0.12
Mozilla Firefox 1.5.0.8
Mozilla Firefox 1.5.0.9
Mozilla Firefox 1.5.7
Mozilla Firefox 1.5.6
Mozilla Firefox 2.0.0.2
Mozilla Firefox 3.0.2
Mozilla Firefox 3.0.6
NA
CVE-2009-2066
Apple Safari detects http content in https web pages only when the top-level frame uses https, which allows man-in-the-middle malicious users to execute arbitrary web script, in an https site's context, by modifying an http page to include an https iframe that references a s...
Apple Safari 1.0.0b2
Apple Safari 1.0.1
Apple Safari 1.1.0
Apple Safari 1.1
Apple Safari 1.2.5
Apple Safari 1.3
Apple Safari 2.0
Apple Safari 2.0.0
Apple Safari 2.0.3
Apple Safari 1.0.0
Apple Safari 1.0.0b1
Apple Safari 1.0
Apple Safari 1.2.3
Apple Safari 1.2.4
Apple Safari 0.9
Apple Safari 1.0.3
Apple Safari 1.2.0
Apple Safari 1.2.1
Apple Safari 1.2.2
Apple Safari 1.3.2
Apple Safari 3
Apple Safari 3.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »