|
[Japanese]
|
JVNDB-2018-000029
|
Safari vulnerable to script injection
|
|
Safari provided by Apple Inc. contains a script injection vulnerability (CWE-81) in the processing of displaying an error page when it fails to verify server certificates.
In an error page Safari displays when it fails to verify server certificates, a domain name of the website accessed is output straightly. Therefore by exploiting this vulnerability, an arbitrary script may be executed on the user's web browser via an error page that is displayed when a user is led to visit a website with a specially crafted domain name.
Yuji Tonai of NTT Communications Corporation reported this vulnerability to IPA.
JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
|
|
CVSS V3 Severity:
Base Metrics 5.4 (Medium) [IPA Score]
- Attack Vector: Network
- Attack Complexity: Low
- Privileges Required: None
- User Interaction: Required
- Scope: Unchanged
- Confidentiality Impact: Low
- Integrity Impact: Low
- Availability Impact: None
CVSS V2 Severity:
Base Metrics 5.8 (Medium) [IPA Score]
- Access Vector: Network
- Access Complexity: Medium
- Authentication: None
- Confidentiality Impact: Partial
- Integrity Impact: Partial
- Availability Impact: None
|
|
|
Apple Inc.
- Safari version 11.0.2 and earlier
|
|
|
If a user is led to visit a website with a specially crafted domain name, an arbitrary script may be executed on the user's web browser.
|
|
[Update the Software]
Apply the latest update according to the information provided by the developer.
|
|
Apple Inc.
|
|
- Improper Input Validation(CWE-20) [IPA Evaluation]
|
|
- CVE-2018-4133
|
|
- JVN : JVN#01161596
- National Vulnerability Database (NVD) : CVE-2018-4133
|
|
- [2018/03/30]
Web page was published
- [2018/06/14]
References : Content was added
|
