Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple safari 2.0.4 419.3 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-3372
Apple Safari 2.0.4/419.3 allows remote malicious users to cause a denial of service (application crash) via a DHTML setAttributeNode function call with zero arguments, which triggers a null dereference.
Apple Safari 2.0.4 419.3
1 EDB exploit
NA
CVE-2007-0644
Format string vulnerability in Apple Safari 2.0.4 (419.3) allows remote user-assisted malicious users to cause a denial of service (crash) via format string specifiers in filenames that are not properly handled when calling the (1) NSLog and (2) NSBeginAlertSheet Apple AppKit fun...
Apple Safari 2.0.4 419.3
1 EDB exploit
NA
CVE-2007-0342
WebCore in Apple WebKit build 18794 allows remote malicious users to cause a denial of service (null dereference and application crash) via a TD element with a large number in the ROWSPAN attribute, as demonstrated by a crash of OmniWeb 5.5.3 on Mac OS X 10.4.8, a different vulne...
Omnigroup Omniweb 5.5.3
Apple Safari 2.0.4 419.3
Apple Webkit Build 18794
Apple Mac Os X 10.4.8
1 EDB exploit
NA
CVE-2008-3644
Apple Safari prior to 3.2 does not properly prevent caching of form data for form fields that have autocomplete disabled, which allows local users to obtain sensitive information by reading the browser's page cache.
Apple Safari 1.3.2
Apple Safari 2
Apple Safari 1.1.1
Apple Safari 3.0.4
Apple Safari 1.2.2
Apple Safari 2.0.1
Apple Safari 3.0.1
Apple Safari 2.0.3
Apple Safari 1.0.3
Apple Safari 2.0.2
Apple Safari 3.0.2
Apple Safari 1.0
Apple Safari 2.0.4 419.3
Apple Safari 3.1.1
Apple Safari 1.3
Apple Safari 3.0.3
Apple Safari 3.1
Apple Safari 1.2.5
Apple Safari 3.0
Apple Safari 2.0
Apple Safari 1.2.4
Apple Safari 1.2.1
NA
CVE-2008-3623
Heap-based buffer overflow in CoreGraphics in Apple Safari prior to 3.2 on Windows, in iPhone OS 1.0 up to and including 2.2.1, and in iPhone OS for iPod touch 1.1 up to and including 2.2.1 allows remote malicious users to execute arbitrary code or cause a denial of service (appl...
Apple Safari
Apple Safari 0.8
Apple Safari 0.9
Apple Safari 1.0
Apple Safari 1.0.3
Apple Safari 1.1
Apple Safari 1.1.1
Apple Safari 1.2
Apple Safari 1.2.1
Apple Safari 1.2.2
Apple Safari 1.2.3
Apple Safari 1.2.4
Apple Safari 1.2.5
Apple Safari 1.3
Apple Safari 1.3.1
Apple Safari 1.3.2
Apple Safari 2
Apple Safari 2.0
Apple Safari 2.0.1
Apple Safari 2.0.2
Apple Safari 2.0.3
Apple Safari 2.0.3 417.9.3
NA
CVE-2008-4216
The plug-in interface in WebKit in Apple Safari prior to 3.2 does not prevent plug-ins from accessing local URLs, which allows remote malicious users to obtain sensitive information via vectors that "launch local files."
Apple Safari 1.3.2
Apple Safari 2
Apple Safari 1.1.1
Apple Safari 3.0.4
Apple Safari 1.2.2
Apple Safari 2.0.1
Apple Safari 3.0.1
Apple Safari 2.0.3
Apple Safari 1.0.3
Apple Safari 2.0.2
Apple Safari 3.0.2
Apple Safari 1.0
Apple Safari 2.0.4 419.3
Apple Safari 3.1.1
Apple Safari 1.3
Apple Safari 3.0.3
Apple Safari 3.1
Apple Safari 1.2.5
Apple Safari 3.0
Apple Safari 2.0
Apple Safari 1.2.4
Apple Safari 1.2.1
NA
CVE-2009-2072
Apple Safari does not require a cached certificate before displaying a lock icon for an https web site, which allows man-in-the-middle malicious users to spoof an arbitrary https site by sending the browser a crafted (1) 4xx or (2) 5xx CONNECT response page for an https request s...
Apple Safari 3.0.4b
Apple Safari 1.3.0
Apple Safari 1.0.3
Apple Safari 2.0.3
Apple Safari 1.3.2
Apple Safari 2
Apple Safari 1.1.1
Apple Safari 3.0.4
Apple Safari 1.2.2
Apple Safari 3.0.1
Apple Safari 2.0.1
Apple Safari 2.0.2
Apple Safari 1.0.2
Apple Safari 3.0.0
Apple Safari 3.0.2
Apple Safari 1.0
Apple Safari 2.0.4 419.3
Apple Safari 3.0.3b
Apple Safari 3.1.1
Apple Safari 1.3
Apple Safari 3.1
Apple Safari 1.2.5
NA
CVE-2009-2062
Apple Safari prior to 3.2.2 processes a 3xx HTTP CONNECT response before a successful SSL handshake, which allows man-in-the-middle malicious users to execute arbitrary web script, in an https site's context, by modifying this CONNECT response to specify a 302 redirect to an...
Apple Safari 3.0.4b
Apple Safari 1.3.0
Apple Safari 1.0.3
Apple Safari 2.0.3
Apple Safari 1.3.2
Apple Safari 2
Apple Safari 1.1.1
Apple Safari 3.0.4
Apple Safari 1.2.2
Apple Safari 3.0.1
Apple Safari 2.0.1
Apple Safari 2.0.2
Apple Safari 1.0.2
Apple Safari 3.0.0
Apple Safari 3.0.2
Apple Safari 1.0
Apple Safari 2.0.4 419.3
Apple Safari 3.0.3b
Apple Safari 3.1.1
Apple Safari 1.3
Apple Safari 3.1
Apple Safari 1.2.5
NA
CVE-2009-2066
Apple Safari detects http content in https web pages only when the top-level frame uses https, which allows man-in-the-middle malicious users to execute arbitrary web script, in an https site's context, by modifying an http page to include an https iframe that references a s...
Apple Safari 3.0.4b
Apple Safari 1.3.0
Apple Safari 1.0.3
Apple Safari 2.0.3
Apple Safari 1.3.2
Apple Safari 2
Apple Safari 1.1.1
Apple Safari 3.0.4
Apple Safari 1.2.2
Apple Safari 3.0.1
Apple Safari 2.0.1
Apple Safari 2.0.2
Apple Safari 1.0.2
Apple Safari 3.0.0
Apple Safari 3.0.2
Apple Safari 1.0
Apple Safari 2.0.4 419.3
Apple Safari 3.0.3b
Apple Safari 3.1.1
Apple Safari 1.3
Apple Safari 3.1
Apple Safari 1.2.5
NA
CVE-2009-3384
Multiple unspecified vulnerabilities in WebKit in Apple Safari prior to 4.0.4 on Windows allow remote FTP servers to execute arbitrary code, cause a denial of service (application crash), or obtain sensitive information via a crafted directory listing in a reply.
Apple Safari
Apple Safari 0.8
Apple Safari 0.9
Apple Safari 1.0
Apple Safari 1.0.0
Apple Safari 1.0.0b1
Apple Safari 1.0.0b2
Apple Safari 1.0.1
Apple Safari 1.0.2
Apple Safari 1.0.3
Apple Safari 1.1.0
Apple Safari 1.1.1
Apple Safari 1.2
Apple Safari 1.2.0
Apple Safari 1.2.1
Apple Safari 1.2.2
Apple Safari 1.2.3
Apple Safari 1.2.4
Apple Safari 1.2.5
Apple Safari 1.3
Apple Safari 1.3.0
Apple Safari 1.3.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »