What is the severity of CVE-2014-1388?

CVE-2014-1388 has a high severity rating due to its potential to allow remote code execution and denial of service.

How do I fix CVE-2014-1388?

To fix CVE-2014-1388, update Apple Safari to version 7.0.6 or later, or ensure that you are using versions prior to Safari 6.1.6.

What versions of Safari are affected by CVE-2014-1388?

CVE-2014-1388 affects Apple Safari versions before 6.1.6 and 7.x before 7.0.6.

What types of attacks can CVE-2014-1388 enable?

CVE-2014-1388 can enable remote attackers to execute arbitrary code or cause application crashes through crafted websites.

Are older versions of Safari safe from CVE-2014-1388?

Older versions of Safari are vulnerable to CVE-2014-1388 if they are prior to 6.1.6.

Vulnerability/
CVE-2014-1388

medium

6.8

CWE

119

14/8/2014

6/8/2024

CVE-2014-1388: Buffer Overflow

First published: Thu Aug 14 2014(Updated: )

WebKit, as used in Apple Safari before 6.1.6 and 7.x before 7.0.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in HT6367.

Credit: product-security@apple.com

Affected Software	Affected Version	How to fix
Apple Mobile Safari	=7.0
Apple Mobile Safari	=7.0.1
Apple Mobile Safari	=7.0.2
Apple Mobile Safari	=7.0.3
Apple Mobile Safari	=7.0.4
Apple Mobile Safari	=7.0.5
Apple Mobile Safari	<=6.1.5
Apple Mobile Safari	=6.0
Apple Mobile Safari	=6.0.1
Apple Mobile Safari	=6.0.2
Apple Mobile Safari	=6.0.3
Apple Mobile Safari	=6.0.4
Apple Mobile Safari	=6.0.5
Apple Mobile Safari	=6.1
Apple Mobile Safari	=6.1.1
Apple Mobile Safari	=6.1.2
Apple Mobile Safari	=6.1.3
Apple Mobile Safari	=6.1.4

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2014-1388?
CVE-2014-1388 has a high severity rating due to its potential to allow remote code execution and denial of service.
How do I fix CVE-2014-1388?
To fix CVE-2014-1388, update Apple Safari to version 7.0.6 or later, or ensure that you are using versions prior to Safari 6.1.6.
What versions of Safari are affected by CVE-2014-1388?
CVE-2014-1388 affects Apple Safari versions before 6.1.6 and 7.x before 7.0.6.
What types of attacks can CVE-2014-1388 enable?
CVE-2014-1388 can enable remote attackers to execute arbitrary code or cause application crashes through crafted websites.
Are older versions of Safari safe from CVE-2014-1388?
Older versions of Safari are vulnerable to CVE-2014-1388 if they are prior to 6.1.6.

agent/references
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/weakness
agent/last-modified-date
agent/severity
agent/author
agent/first-publish-date
agent/description
agent/event
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/apple
canonical/apple mobile safari
version/apple mobile safari/7.0
version/apple mobile safari/7.0.1
version/apple mobile safari/7.0.2
version/apple mobile safari/7.0.3
version/apple mobile safari/7.0.4
version/apple mobile safari/7.0.5
version/apple mobile safari/6.1.5
version/apple mobile safari/6.0
version/apple mobile safari/6.0.1
version/apple mobile safari/6.0.2
version/apple mobile safari/6.0.3
version/apple mobile safari/6.0.4
version/apple mobile safari/6.0.5
version/apple mobile safari/6.1
version/apple mobile safari/6.1.1
version/apple mobile safari/6.1.2
version/apple mobile safari/6.1.3
version/apple mobile safari/6.1.4