Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-3713

Overview
Vulnerability Score 4.3 4.3
CVE Id CVE-2012-3713
Last Modified 21 Mar 2013 11:11:54
Published 20 Sep 2012 05:55:02
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-3713

Summary

Apple Safari before 6.0.1 does not properly handle the Quarantine attribute of HTML documents, which allows user-assisted remote attackers to read arbitrary files by leveraging the presence of a downloaded document.

Vulnerable Systems

Application

  • Apple Safari

  • Apple Safari 1.0

  • Apple Safari 1.0.0

  • Apple Safari 1.0.0b1

  • Apple Safari 1.0.0b2

  • Apple Safari 1.0.1

  • Apple Safari 1.0.2

  • Apple Safari 1.0.3

  • Apple Safari 1.0b1

  • Apple Safari 1.1

  • Apple Safari 1.1.0

  • Apple Safari 1.1.1

  • Apple Safari 1.2

  • Apple Safari 1.2.0

  • Apple Safari 1.2.1

  • Apple Safari 1.2.2

  • Apple Safari 1.2.3

  • Apple Safari 1.2.4

  • Apple Safari 1.2.5

  • Apple Safari 1.3

  • Apple Safari 1.3.0

  • Apple Safari 1.3.1

  • Apple Safari 1.3.2

  • Apple Safari 2

  • Apple Safari 2.0

  • Apple Safari 2.0.0

  • Apple Safari 2.0.1

  • Apple Safari 2.0.2

  • Apple Safari 2.0.3

  • Apple Safari 2.0.4

  • Apple Safari 3

  • Apple Safari 3.0

  • Apple Safari 3.0.0

  • Apple Safari 3.0.0b

  • Apple Safari 3.0.1

  • Apple Safari 3.0.1b

  • Apple Safari 3.0.2

  • Apple Safari 3.0.2b

  • Apple Safari 3.0.3

  • Apple Safari 3.0.3b

  • Apple Safari 3.0.4

  • Apple Safari 3.0.4b

  • Apple Safari 3.1.0

  • Apple Safari 3.1.0b

  • Apple Safari 3.1.1

  • Apple Safari 3.1.1b

  • Apple Safari 3.1.2

  • Apple Safari 3.1.2b

  • Apple Safari 3.2.0

  • Apple Safari 3.2.0b

  • Apple Safari 3.2.1

  • Apple Safari 3.2.1b

  • Apple Safari 3.2.2

  • Apple Safari 3.2.2b

  • Apple Safari 4.0

  • Apple Safari 4.0.0b

  • Apple Safari 4.0.1

  • Apple Safari 4.0.2

  • Apple Safari 4.0.3

  • Apple Safari 4.0.4

  • Apple Safari 4.0.5

  • Apple Safari 4.1

  • Apple Safari 4.1.1

  • Apple Safari 4.1.2

  • Apple Safari 5.0

  • Apple Safari 5.0.1

  • Apple Safari 5.0.2

  • Apple Safari 5.0.4

  • Apple Safari 5.0.5

  • Apple Safari 5.0.6

  • Apple Safari 5.1

  • Apple Safari 5.1.1

  • Apple Safari 5.1.2

  • Apple Safari 5.1.3

  • Apple Safari 5.1.4

  • Apple Safari 5.1.5

  • Apple Safari 5.1.6

  • Apple Safari 5.1.7

  • Apple Safari 6.0


References

CONFIRM - http://support.apple.com/kb/HT5502

APPLE - APPLE-SA-2012-09-19-3

XF - apple-safari-cve20123713(78679)

BID - 55624

OSVDB - 85652

Related Patches

Apple 2012-09-19 Safari Update 6.0.1 (Lion)

IT Risk Posture:

Learn More
divider


Vulnerabilities

Patches

News


Free Risk Assessment Tools

Application Scanner
Find vulnerabilities on your network.

divider

Device Scanner
Find vulnerabilities on your network.

divider

Patch Scanner
Find vulnerabilities on your network.

Last Updated: 27 May 2016 11:00:46