Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple safari 2.0.4 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-0298
KHTML WebKit as used in Apple Safari 2.x allows remote malicious users to cause a denial of service (browser crash) via a crafted web page, possibly involving a STYLE attribute of a DIV element.
Apple Safari 2.0
Apple Safari 2.0.1
Apple Safari 2.0.2
Apple Safari 2.0.3
Apple Safari 2.0.4
1 EDB exploit
NA
CVE-2007-3186
Apple Safari Beta 3.0.1 for Windows allows remote malicious users to execute arbitrary commands via shell metacharacters in a URI in the SRC of an IFRAME, as demonstrated using a gopher URI.
Apple Safari 2.0.1
Apple Safari 3.0.1
Apple Safari 2.0.3
Apple Safari 2.0.2
Apple Safari 2.0
Apple Safari 2.0.4
Apple Safari
Apple Safari 3.0
1 EDB exploit
NA
CVE-2006-6238
The AutoFill feature in Apple Safari 2.0.4 does not properly verify that all automatically populated form fields are visible to the user, which allows remote malicious users to obtain sensitive information, such as usernames and passwords, via input fields of zero width, a varian...
Apple Safari 2.0.4
NA
CVE-2007-2843
Cross-domain vulnerability in Apple Safari 2.0.4 allows remote malicious users to access restricted information from other domains via Javascript, as demonstrated by a js script that accesses the location information of cross-domain web pages, probably involving setTimeout and ti...
Apple Safari 2.0.4
1 EDB exploit
NA
CVE-2008-3623
Heap-based buffer overflow in CoreGraphics in Apple Safari prior to 3.2 on Windows, in iPhone OS 1.0 up to and including 2.2.1, and in iPhone OS for iPod touch 1.1 up to and including 2.2.1 allows remote malicious users to execute arbitrary code or cause a denial of service (appl...
Apple Safari
Apple Safari 0.8
Apple Safari 0.9
Apple Safari 1.0
Apple Safari 1.0.3
Apple Safari 1.1
Apple Safari 1.1.1
Apple Safari 1.2
Apple Safari 1.2.1
Apple Safari 1.2.2
Apple Safari 1.2.3
Apple Safari 1.2.4
Apple Safari 1.2.5
Apple Safari 1.3
Apple Safari 1.3.1
Apple Safari 1.3.2
Apple Safari 2
Apple Safari 2.0
Apple Safari 2.0.1
Apple Safari 2.0.2
Apple Safari 2.0.3
Apple Safari 2.0.3 417.9.3
NA
CVE-2008-4216
The plug-in interface in WebKit in Apple Safari prior to 3.2 does not prevent plug-ins from accessing local URLs, which allows remote malicious users to obtain sensitive information via vectors that "launch local files."
Apple Safari 1.3.2
Apple Safari 2
Apple Safari 1.1.1
Apple Safari 3.0.4
Apple Safari 1.2.2
Apple Safari 2.0.1
Apple Safari 3.0.1
Apple Safari 2.0.3
Apple Safari 1.0.3
Apple Safari 2.0.2
Apple Safari 3.0.2
Apple Safari 1.0
Apple Safari 2.0.4 419.3
Apple Safari 3.1.1
Apple Safari 1.3
Apple Safari 3.0.3
Apple Safari 3.1
Apple Safari 1.2.5
Apple Safari 3.0
Apple Safari 2.0
Apple Safari 1.2.4
Apple Safari 1.2.1
NA
CVE-2008-3644
Apple Safari prior to 3.2 does not properly prevent caching of form data for form fields that have autocomplete disabled, which allows local users to obtain sensitive information by reading the browser's page cache.
Apple Safari 1.3.2
Apple Safari 2
Apple Safari 1.1.1
Apple Safari 3.0.4
Apple Safari 1.2.2
Apple Safari 2.0.1
Apple Safari 3.0.1
Apple Safari 2.0.3
Apple Safari 1.0.3
Apple Safari 2.0.2
Apple Safari 3.0.2
Apple Safari 1.0
Apple Safari 2.0.4 419.3
Apple Safari 3.1.1
Apple Safari 1.3
Apple Safari 3.0.3
Apple Safari 3.1
Apple Safari 1.2.5
Apple Safari 3.0
Apple Safari 2.0
Apple Safari 1.2.4
Apple Safari 1.2.1
NA
CVE-2008-1007
WebCore, as used in Apple Safari prior to 3.1, does not enforce the frame navigation policy for Java applets, which allows remote malicious users to conduct cross-site scripting (XSS) attacks.
Apple Safari
Apple Safari 1.3.2
Apple Safari 2.0.2
Apple Safari 3.0.1
Apple Safari 3.0.2
Apple Safari 1.0
Apple Safari 1.3
Apple Safari 3.0.3
Apple Safari 2.0
Apple Safari 0.8
Apple Safari 2.0.4
Apple Safari 1.1
Apple Safari 1.3.1
Apple Safari 1.2
Apple Safari 3.0
Apple Safari 0.9
NA
CVE-2008-1005
WebCore, as used in Apple Safari prior to 3.1, does not properly mask the password field when reverse conversion is used with the Kotoeri input method, which allows physically proximate malicious users to read the password.
Apple Safari 1.3.2
Apple Safari 3.0.4
Apple Safari 2.0.2
Apple Safari 3.0.1
Apple Safari 3.0.2
Apple Safari 1.0
Apple Safari 1.3
Apple Safari 3.0.3
Apple Safari 2.0
Apple Safari 0.8
Apple Safari 2.0.4
Apple Safari 1.1
Apple Safari 1.3.1
Apple Safari 1.2
Apple Safari 3.0
Apple Safari 0.9
NA
CVE-2008-1008
Cross-site scripting (XSS) vulnerability in WebCore, as used in Apple Safari prior to 3.1, allows remote malicious users to inject arbitrary web script or HTML via the document.domain property.
Apple Safari 1.3.2
Apple Safari 3.0.4
Apple Safari 2.0.2
Apple Safari 3.0.1
Apple Safari 3.0.2
Apple Safari 1.0
Apple Safari 1.3
Apple Safari 3.0.3
Apple Safari 2.0
Apple Safari 0.8
Apple Safari 2.0.4
Apple Safari 1.1
Apple Safari 1.3.1
Apple Safari 1.2
Apple Safari 3.0
Apple Safari 0.9
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »