Alert GCSA-12058 - Vulnerabilita' in Safari per Mac OS X
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
**********************************************************************
Alert ID : GCSA-12058
Data : 21 Settembre 2012
Titolo : Vulnerabilita' in Safari per Mac OS X
**********************************************************************
:: Descrizione del problema:
Sono state identificate varie vulnerabilita' in Apple Safari per
Mac OS X, che potrebbero essere sfruttate da un attaccante remoto
per rivelare informazioni sensibili, oltrepassare alcune restrizioni
di sicurezza e compromettere un sistema utente.
Per una descrizione completa delle vulnerabilita' fare riferimento
alla segnalazione ufficiale di Apple.
:: Piattaforme e Software interessati:
Safari 6 per Mac OS X Lion e Mountain Lion
Nota: Mac OS X v10.8.2 include gia' la versione 6.0.1 di Safari
:: Impatto:
Security Bypass
Esposizione di informazioni sensibili
Accesso al sistema
:: Soluzione:
Aggiornare Apple Safari per Mac OS X alla versione 6.0.1
utilizzando l'applicazione Apple Software Update
:: Riferimenti:
Security Update per Safari
http://support.apple.com/kb/HT5502
Security Focus
http://www.securityfocus.com/bid/55534/discuss
Secunia: Apple Safari for Mac OS X Multiple Vulnerabilities
http://secunia.com/advisories/50577/
Mitre CVE
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3601
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3602
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3606
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3607
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3612
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3613
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3614
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3616
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3617
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3621
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3622
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3623
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3624
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3632
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3643
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3647
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3648
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3649
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3651
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3652
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3654
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3657
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3658
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3659
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3660
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3671
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3672
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3673
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3675
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3676
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3677
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3684
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3685
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3687
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3688
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3692
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3699
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3700
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3701
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3702
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3703
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3704
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3705
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3706
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3707
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3708
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3709
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3710
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3711
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3712
-----BEGIN PGP SIGNATURE-----
iD8DBQFQXIl2wZxMk2USYEIRAs0SAJ9roc65Hso/8AuoKQKnAHR4DsBG1wCffzZH
cCIZbp48w0ZdMdDjhowRXf0=
=Vybz
-----END PGP SIGNATURE-----
Hash: SHA1
**********************************************************************
Alert ID : GCSA-12058
Data : 21 Settembre 2012
Titolo : Vulnerabilita' in Safari per Mac OS X
**********************************************************************
:: Descrizione del problema:
Sono state identificate varie vulnerabilita' in Apple Safari per
Mac OS X, che potrebbero essere sfruttate da un attaccante remoto
per rivelare informazioni sensibili, oltrepassare alcune restrizioni
di sicurezza e compromettere un sistema utente.
Per una descrizione completa delle vulnerabilita' fare riferimento
alla segnalazione ufficiale di Apple.
:: Piattaforme e Software interessati:
Safari 6 per Mac OS X Lion e Mountain Lion
Nota: Mac OS X v10.8.2 include gia' la versione 6.0.1 di Safari
:: Impatto:
Security Bypass
Esposizione di informazioni sensibili
Accesso al sistema
:: Soluzione:
Aggiornare Apple Safari per Mac OS X alla versione 6.0.1
utilizzando l'applicazione Apple Software Update
:: Riferimenti:
Security Update per Safari
http://support.apple.com/kb/HT5502
Security Focus
http://www.securityfocus.com/bid/55534/discuss
Secunia: Apple Safari for Mac OS X Multiple Vulnerabilities
http://secunia.com/advisories/50577/
Mitre CVE
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3601
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3602
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3606
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3607
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3612
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3613
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3614
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3616
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3617
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3621
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3622
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3623
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3624
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3632
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3643
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3647
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3648
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3649
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3651
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3652
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3654
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3657
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3658
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3659
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3660
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3671
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3672
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3673
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3675
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3676
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3677
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3684
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3685
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3687
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3688
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3692
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3699
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3700
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3701
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3702
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3703
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3704
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3705
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3706
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3707
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3708
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3709
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3710
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3711
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3712
-----BEGIN PGP SIGNATURE-----
iD8DBQFQXIl2wZxMk2USYEIRAs0SAJ9roc65Hso/8AuoKQKnAHR4DsBG1wCffzZH
cCIZbp48w0ZdMdDjhowRXf0=
=Vybz
-----END PGP SIGNATURE-----