WebKit CVE-2012-0676 Security Bypass Vulnerability
BID:53446
Info
WebKit CVE-2012-0676 Security Bypass Vulnerability
| Bugtraq ID: | 53446 |
| Class: | Design Error |
| CVE: |
CVE-2012-0676 |
| Remote: | Yes |
| Local: | No |
| Published: | May 09 2012 12:00AM |
| Updated: | May 09 2012 12:00AM |
| Credit: | Andreas Akre Solberg of UNINETT AS, Aaron Roots of Deakin University ITSD, Tyler Goe |
| Vulnerable: |
WebKit Open Source Project WebKit 1.2.5 WebKit Open Source Project WebKit 1.2.3 WebKit Open Source Project WebKit 1.2.2 WebKit Open Source Project WebKit r82222 WebKit Open Source Project WebKit r77705 WebKit Open Source Project WebKit r52833 WebKit Open Source Project WebKit r52401 WebKit Open Source Project WebKit r51295 WebKit Open Source Project WebKit r38566 WebKit Open Source Project WebKit r105591 WebKit Open Source Project WebKit 2 WebKit Open Source Project WebKit 1.2.X WebKit Open Source Project WebKit 1.2.2-1 WebKit Open Source Project WebKit 0 Apple Safari 5.1.5 for Windows Apple Safari 5.1.4 for Windows Apple Safari 5.1.4 Apple Safari 5.1.1 for Windows Apple Safari 5.1.1 Apple Safari 5.1 for Windows Apple Safari 5.1 |
| Not Vulnerable: |
Apple Safari 5.1.7 |
Discussion
WebKit CVE-2012-0676 Security Bypass Vulnerability
WebKit is prone to a security-bypass vulnerability. This issue allows a maliciously crafted website to populate form inputs on another website with arbitrary values.
Attackers can exploit this issue to bypass security restrictions.
WebKit is prone to a security-bypass vulnerability. This issue allows a maliciously crafted website to populate form inputs on another website with arbitrary values.
Attackers can exploit this issue to bypass security restrictions.
Solution / Fix
WebKit CVE-2012-0676 Security Bypass Vulnerability
Solution:
Vendor updates are available. Please see the references for more information.
Apple Safari 5.1.1
Apple Safari 5.1.1 for Windows
Apple Safari 5.1.4 for Windows
Apple Safari 5.1.4
Apple Safari 5.1.5 for Windows
Apple Safari 5.1
Apple Safari 5.1 for Windows
Solution:
Vendor updates are available. Please see the references for more information.
Apple Safari 5.1.1
-
Apple Safari5.1.7LionManual.dmg
http://www.apple.com/safari/download/ -
Apple Safari5.1.7SnowLeopardManual.dmg
http://www.apple.com/safari/download/
Apple Safari 5.1.1 for Windows
-
Apple APPLE-SA-2012-05-09-2-Safari_Setup.exe
http://www.apple.com/safari/download/ -
Apple APPLE-SA-2012-05-09-2-SafariSetup.exe
http://www.apple.com/safari/download/
Apple Safari 5.1.4 for Windows
-
Apple APPLE-SA-2012-05-09-2-Safari_Setup.exe
http://www.apple.com/safari/download/ -
Apple APPLE-SA-2012-05-09-2-SafariSetup.exe
http://www.apple.com/safari/download/
Apple Safari 5.1.4
-
Apple Safari5.1.7LionManual.dmg
http://www.apple.com/safari/download/ -
Apple Safari5.1.7SnowLeopardManual.dmg
http://www.apple.com/safari/download/
Apple Safari 5.1.5 for Windows
-
Apple APPLE-SA-2012-05-09-2-Safari_Setup.exe
http://www.apple.com/safari/download/ -
Apple APPLE-SA-2012-05-09-2-SafariSetup.exe
http://www.apple.com/safari/download/
Apple Safari 5.1
-
Apple Safari5.1.7LionManual.dmg
http://www.apple.com/safari/download/ -
Apple Safari5.1.7SnowLeopardManual.dmg
http://www.apple.com/safari/download/
Apple Safari 5.1 for Windows
-
Apple APPLE-SA-2012-05-09-2-Safari_Setup.exe
http://www.apple.com/safari/download/ -
Apple APPLE-SA-2012-05-09-2-SafariSetup.exe
http://www.apple.com/safari/download/