Alert GCSA-15015 - Vulnerabilita' in Apple Safari
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
******************************************************************
Alert ID: GCSA-15015
Data: 18 Marzo 2015
Titolo: Vulnerabilita' in Apple Safari
******************************************************************
:: Descrizione del problema
Sono state identificate varie vulnerabilita' in Apple Safari, che potrebbero essere sfruttate da un attaccante remoto
per eseguire codice arbitrario e falsificare URL.
Per una descrizione completa delle vulnerabilita' fare riferimento alla segnalazione ufficiale di Apple.
:: Piattaforme e Software interessati
Apple Safari precedente a 6.2.4
Apple Safari precedente a 7.1.4
Apple Safari precedente a 8.0.4
:: Impatto
Esecuzione di codice arbitrario
Modifica delle informazioni di sistema
Accesso al sistema
:: Soluzioni
Aggiornare Safari alla versione 6.2.4, 7.1.4, 8.0.4
utilizzando l'applicazione Apple Software Update
:: Riferimenti
Apple
https://support.apple.com/en-us/HT1222
SecurityTracker
http://www.securitytracker.com/id/1031936
Mitre's CVE ID
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1068
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1069
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1070
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1071
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1072
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1073
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1074
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1075
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1076
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1077
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1078
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1079
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1080
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1081
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1082
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1083
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1084
GARR CERT Newsletter subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFVCZF0wZxMk2USYEIRAs0vAJ9Dp9+bE5ACJ00HuwwGWedcB3ySEwCgj5xw
UuKahEo94mypiEWrmip7tZY=
=S7Ro
-----END PGP SIGNATURE-----
Hash: SHA1
******************************************************************
Alert ID: GCSA-15015
Data: 18 Marzo 2015
Titolo: Vulnerabilita' in Apple Safari
******************************************************************
:: Descrizione del problema
Sono state identificate varie vulnerabilita' in Apple Safari, che potrebbero essere sfruttate da un attaccante remoto
per eseguire codice arbitrario e falsificare URL.
Per una descrizione completa delle vulnerabilita' fare riferimento alla segnalazione ufficiale di Apple.
:: Piattaforme e Software interessati
Apple Safari precedente a 6.2.4
Apple Safari precedente a 7.1.4
Apple Safari precedente a 8.0.4
:: Impatto
Esecuzione di codice arbitrario
Modifica delle informazioni di sistema
Accesso al sistema
:: Soluzioni
Aggiornare Safari alla versione 6.2.4, 7.1.4, 8.0.4
utilizzando l'applicazione Apple Software Update
:: Riferimenti
Apple
https://support.apple.com/en-us/HT1222
SecurityTracker
http://www.securitytracker.com/id/1031936
Mitre's CVE ID
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1068
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1069
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1070
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1071
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1072
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1073
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1074
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1075
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1076
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1077
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1078
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1079
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1080
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1081
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1082
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1083
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1084
GARR CERT Newsletter subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFVCZF0wZxMk2USYEIRAs0vAJ9Dp9+bE5ACJ00HuwwGWedcB3ySEwCgj5xw
UuKahEo94mypiEWrmip7tZY=
=S7Ro
-----END PGP SIGNATURE-----