WebKit, as used in Apple Safari prior to 6.1.3 and 7.x prior to 7.0.3, does not properly validate WebProcess IPC messages, which allows remote malicious users to bypass a sandbox protection mechanism and read arbitrary files by leveraging WebProcess access.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple safari 7.0.2 |
||
apple safari 6.0 |
||
apple safari 6.0.1 |
||
apple safari 6.0.2 |
||
apple safari 7.0.1 |
||
apple safari 6.0.3 |
||
apple safari 6.0.5 |
||
apple safari 6.1.1 |
||
apple safari |
||
apple safari 7.0 |
||
apple safari 6.0.4 |
||
apple safari 6.1 |