Vulnerabilities > Apple > Safari > 6.0.3

DATE CVE VULNERABILITY TITLE RISK
2013-06-05 CVE-2013-1012 Cross-Site Scripting vulnerability in Apple Safari
Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari before 6.0.5 allows remote attackers to inject arbitrary web script or HTML via vectors involving IFRAME elements.
network
apple CWE-79
4.3
4.3
2013-06-05 CVE-2013-1009 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Apple Safari
WebKit, as used in Apple Safari before 6.0.5, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2013-1023.
network
apple CWE-119
6.8
6.8