CVE-2012-3713

Apple Safari before 6.0.1 does not properly handle the Quarantine attribute of HTML documents, which allows user-assisted remote attackers to read arbitrary files by leveraging the presence of a downloaded document.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:P/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Affected Products (NVD)
VendorProductVersion
applesafari
𝑥
≤ 6.0
applesafari
1.0
applesafari
1.0:beta
applesafari
1.0:beta2
applesafari
1.0.0
applesafari
1.0.0b1:b1
applesafari
1.0.0b2:b2
applesafari
1.0.1
applesafari
1.0.2
applesafari
1.0.3
applesafari
1.0.3:85.8
applesafari
1.0.3:85.8.1
applesafari
1.0b1:b1
applesafari
1.1
applesafari
1.1.0
applesafari
1.1.1
applesafari
1.2
applesafari
1.2.0
applesafari
1.2.1
applesafari
1.2.2
applesafari
1.2.3
applesafari
1.2.4
applesafari
1.2.5
applesafari
1.3
applesafari
1.3.0
applesafari
1.3.1
applesafari
1.3.2
applesafari
1.3.2:312.5
applesafari
1.3.2:312.6
applesafari
2.0
applesafari
2.0.0
applesafari
2.0.1
applesafari
2.0.2
applesafari
2.0.3
applesafari
2.0.3:417.8
applesafari
2.0.3:417.9
applesafari
2.0.3:417.9.2
applesafari
2.0.3:417.9.3
applesafari
2.0.4
applesafari
2.0.4
applesafari
3.0
applesafari
3.0.0
applesafari
3.0.0
applesafari
3.0.0b:b
applesafari
3.0.0b:b
applesafari
3.0.1
applesafari
3.0.1
applesafari
3.0.1:beta
applesafari
3.0.1b:b
applesafari
3.0.1b:b
applesafari
3.0.2
applesafari
3.0.2
applesafari
3.0.2b:b
applesafari
3.0.2b:b
applesafari
3.0.3
applesafari
3.0.3
applesafari
3.0.3b:b
applesafari
3.0.3b:b
applesafari
3.0.4
applesafari
3.0.4
applesafari
3.0.4b:b
applesafari
3.0.4b:b
applesafari
3.1.0
applesafari
3.1.0
applesafari
3.1.0b:b
applesafari
3.1.0b:b
applesafari
3.1.1
applesafari
3.1.1b:b
applesafari
3.1.2
applesafari
3.1.2b:b
applesafari
3.2.0
applesafari
3.2.0b:b
applesafari
3.2.1
applesafari
3.2.1b:b
applesafari
3.2.2
applesafari
3.2.2b:b
applesafari
4.0
applesafari
4.0:beta
applesafari
4.0.0b:b
applesafari
4.0.1
applesafari
4.0.2
applesafari
4.0.3
applesafari
4.0.4
applesafari
4.0.5
applesafari
4.1
applesafari
4.1.1
applesafari
4.1.2
applesafari
5.0
applesafari
5.0.1
applesafari
5.0.2
applesafari
5.0.4
applesafari
5.0.5
applesafari
5.0.6
applesafari
5.1
applesafari
5.1.1
applesafari
5.1.2
applesafari
5.1.3
applesafari
5.1.4
applesafari
5.1.5
applesafari
5.1.6
applesafari
5.1.7
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://lists.apple.com/archives/security-announce/2012/Sep/msg00005.html
http://osvdb.org/85652
http://support.apple.com/kb/HT5502
http://www.securityfocus.com/bid/55624
https://exchange.xforce.ibmcloud.com/vulnerabilities/78679
http://lists.apple.com/archives/security-announce/2012/Sep/msg00005.html
http://osvdb.org/85652
http://support.apple.com/kb/HT5502
http://www.securityfocus.com/bid/55624
https://exchange.xforce.ibmcloud.com/vulnerabilities/78679