CyberSec.Space Logo
Back to CVE Browser

CVE-2011-0216

CRITICAL
9.3
CVSS Severity Score
EPSS Score0.1550%
EPSS Percentile19.88th
PublishedJul 21, 2011
Last ModifiedApr 29, 2026

Vulnerability Description

Off-by-one error in libxml in Apple Safari before 5.0.6 allows remote attackers to execute arbitrary code or cause a denial of service (heap-based buffer overflow and application crash) via a crafted web site.

Affected Platforms (CPE)

πŸ“¦
Apple

Safari

<= 5.0.5
πŸ“¦
Apple

Safari

= 1.0
πŸ“¦
Apple

Safari

= 1.0
πŸ“¦
Apple

Safari

= 1.0
πŸ“¦
Apple

Safari

= 1.0.0
πŸ“¦
Apple

Safari

= 1.0.0b1
πŸ“¦
Apple

Safari

= 1.0.0b2
πŸ“¦
Apple

Safari

= 1.0.1
πŸ“¦
Apple

Safari

= 1.0.2
πŸ“¦
Apple

Safari

= 1.0.3
πŸ“¦
Apple

Safari

= 1.0.3
πŸ“¦
Apple

Safari

= 1.0.3
πŸ“¦
Apple

Safari

= 1.1
πŸ“¦
Apple

Safari

= 1.1.0
πŸ“¦
Apple

Safari

= 1.1.1
πŸ“¦
Apple

Safari

= 1.2
πŸ“¦
Apple

Safari

= 1.2.0
πŸ“¦
Apple

Safari

= 1.2.1
πŸ“¦
Apple

Safari

= 1.2.2
πŸ“¦
Apple

Safari

= 1.2.3
πŸ“¦
Apple

Safari

= 1.2.4
πŸ“¦
Apple

Safari

= 1.2.5
πŸ“¦
Apple

Safari

= 1.3
πŸ“¦
Apple

Safari

= 1.3.0
πŸ“¦
Apple

Safari

= 1.3.1
πŸ“¦
Apple

Safari

= 1.3.2
πŸ“¦
Apple

Safari

= 1.3.2
πŸ“¦
Apple

Safari

= 1.3.2
πŸ“¦
Apple

Safari

= 2
πŸ“¦
Apple

Safari

= 2.0
πŸ“¦
Apple

Safari

= 2.0.0
πŸ“¦
Apple

Safari

= 2.0.1
πŸ“¦
Apple

Safari

= 2.0.2
πŸ“¦
Apple

Safari

= 2.0.3
πŸ“¦
Apple

Safari

= 2.0.3
πŸ“¦
Apple

Safari

= 2.0.3
πŸ“¦
Apple

Safari

= 2.0.3
πŸ“¦
Apple

Safari

= 2.0.3
πŸ“¦
Apple

Safari

= 2.0.4
πŸ“¦
Apple

Safari

= 3
πŸ“¦
Apple

Safari

= 3.0
πŸ“¦
Apple

Safari

= 3.0.0
πŸ“¦
Apple

Safari

= 3.0.0b
πŸ“¦
Apple

Safari

= 3.0.1
πŸ“¦
Apple

Safari

= 3.0.1b
πŸ“¦
Apple

Safari

= 3.0.2
πŸ“¦
Apple

Safari

= 3.0.2b
πŸ“¦
Apple

Safari

= 3.0.3
πŸ“¦
Apple

Safari

= 3.0.3b
πŸ“¦
Apple

Safari

= 3.0.4
πŸ“¦
Apple

Safari

= 3.0.4b
πŸ“¦
Apple

Safari

= 3.1.0
πŸ“¦
Apple

Safari

= 3.1.0b
πŸ“¦
Apple

Safari

= 3.1.1
πŸ“¦
Apple

Safari

= 3.1.2
πŸ“¦
Apple

Safari

= 3.2.0
πŸ“¦
Apple

Safari

= 3.2.1
πŸ“¦
Apple

Safari

= 3.2.2
πŸ“¦
Apple

Safari

= 4.1
πŸ“¦
Apple

Safari

= 4.1.1
πŸ“¦
Apple

Safari

= 4.1.2
πŸ“¦
Apple

Safari

= 5.0
πŸ“¦
Apple

Safari

= 5.0.1
πŸ“¦
Apple

Safari

= 5.0.2
πŸ“¦
Apple

Safari

= 5.0.3
πŸ“¦
Apple

Safari

= 5.0.4

References & Advisories

πŸ”— http://lists.apple.com/archives/Security-announce/2011//Oct/msg00001.html
πŸ”— http://lists.apple.com/archives/Security-announce/2011//Oct/msg00002.html
πŸ”— http://lists.apple.com/archives/security-announce/2011//Jul/msg00002.html
πŸ”— http://rhn.redhat.com/errata/RHSA-2013-0217.html
πŸ”— http://support.apple.com/kb/HT4808
πŸ”— http://support.apple.com/kb/HT4999
πŸ”— http://support.apple.com/kb/HT5001
πŸ”— http://www.debian.org/security/2012/dsa-2394

Related Vulnerabilities

CVE-2004-053910.0

The "Show in Finder" button in the Safari web browser in Mac OS X 10.3.4 and 10.2.8 may execute downloaded applications, which cou...

CVE-2007-284310.0

Cross-domain vulnerability in Apple Safari 2.0.4 allows remote attackers to access restricted information from other domains via J...

CVE-2004-009210.0

Unknown vulnerability in Safari web browser in Mac OS X 10.2.8 and 10.3.2, with unknown impact.

CVE-2008-230310.0

Integer signedness error in Safari on Apple iPhone before 2.0 and iPod touch before 2.0 allows remote attackers to execute arbitra...