Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
10
CVSSv2

CVE-2014-1300

Published: 26/03/2014 Updated: 08/12/2016
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
VMScore: 890
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Apple

Vulnerability Summary

Unspecified vulnerability in Apple Safari 7.0.2 on OS X allows remote malicious users to execute arbitrary code with root privileges via unknown vectors, as demonstrated by Google during a Pwn4Fun competition at CanSecWest 2014.

Vulnerable Product Search on Vulmon Subscribe to Product

apple safari 7.0.2

Vendor Advisories

Red Hat: CVE-2014-1300
Unspecified vulnerability in Apple Safari 702 on OS X allows remote attackers to execute arbitrary code with root privileges via unknown vectors, as demonstrated by Google during a Pwn4Fun competition at CanSecWest 2014 ...

Github Repositories

https://github.com/wiiudev/libwiiu

Build system and examples for running C code on the Wii U

README This repository contains a way to run code inside the Wii U's web browser It provides a means to execute arbitrary code in the Cafe OS userspace on the Espresso processor Also included is a Cafe OS kernel exploit, which runs in the Espresso's user-mode The exploits in this repository do not provide any access to IOSU on the Starbuck We hope to implement thi

Recent Articles

What took you so long Apple? 26 remote exec bugs die in OS X Safari
The Register • Shaun Nichols in San Francisco • 02 Apr 2014

Cupertino browser update catches up with Google Chrome WebCore patches

Apple has fixed 27 vulnerabilities in its Safari web browser for OS X computers, 18 of which were uncovered by Google's Chrome Security Team. All but one of the flaws allow miscreants to execute arbitrary code on victims' computers. The iPhone giant said its Safari 7.0.3 and 6.1.3 update will close the holes, which were found in its WebKit-derived browser engine. Apple has released the update for Safari on Macs running OS X Mountain Lion and Mavericks. Users are advised to fire up Apple's Softwa...

Read more...

References

NVD-CWE-noinfohttp://www.pwn2own.com/2014/03/pwn2own-results-for-wednesday-day-one/http://twitter.com/thezdi/statuses/443796547872903168http://archives.neohapsis.com/archives/bugtraq/2014-04/0009.htmlhttp://archives.neohapsis.com/archives/bugtraq/2014-04/0136.htmlhttp://archives.neohapsis.com/archives/bugtraq/2014-04/0135.htmlhttps://support.apple.com/kb/HT6537https://nvd.nist.govhttps://github.com/wiiudev/libwiiuhttps://www.theregister.co.uk/2014/04/02/apple_patches_safari_bugs_thanks_to_google/https://access.redhat.com/security/cve/cve-2014-1300
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4040privilege escalationCVE-2024-4112CVE-2024-32872man-in-the-middleCVE-2024-32788bypassCVE-2024-3400CVE-2024-28976
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook