CVE-2011-3230

Apple Safari - Access Control

Title source: rule

Description

Apple Safari before 5.1.1 on Mac OS X does not enforce an intended policy for file: URLs, which allows remote attackers to execute arbitrary code via a crafted web site.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremoteosx

https://www.exploit-db.com/exploits/17986

View Code ZIP pw:eip

metasploit WORKING POC NORMAL

by Aaron Sigel, sinn3r · rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/osx/browser/safari_file_policy.rb

View Code ZIP pw:eip

References (5)

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/70567

[Vendor Advisory] http://lists.apple.com/archives/Security-announce/2011//Oct/msg00004.html

[Third Party Advisory, VDB Entry] http://osvdb.org/76389

[Vendor Advisory] http://support.apple.com/kb/HT5000

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/50162

Scores

EPSS 0.6455

EPSS Percentile 98.5%

Details

CWE

CWE-264

Status published

Products (35)

apple/safari

apple/safari 1.0 (3 CPE variants)

apple/safari 1.0.0

apple/safari 1.0.0b1

apple/safari 1.0.0b2

apple/safari 1.0.1

apple/safari 1.0.2

apple/safari 1.0.3 (3 CPE variants)

apple/safari 1.0b1

apple/safari 1.1

... and 25 more

Published Oct 14, 2011

Tracked Since Feb 18, 2026