CVE-2013-1023

medium

Published 2013-06-05 · Modified 2026-04-29

CVSS v3

—

VIR risk

6.8

Description

WebKit, as used in Apple Safari before 6.0.5, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2013-1009.

Predictions

Exploit likelihood

20%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.

Application impact

Vendor	Product	Versions
apple	safari	`{"endIncluding":"6.0.4"}`
apple	safari	`6.0`
apple	safari	`6.0.1`
apple	safari	`6.0.2`
apple	safari	`6.0.3`

References

http://lists.apple.com/archives/security-announce/2013/Jun/msg00001.html
http://support.apple.com/kb/HT5785
http://lists.apple.com/archives/security-announce/2013/Jun/msg00001.html
http://support.apple.com/kb/HT5785

CWEs

CWE-119

💬 Discuss CVE-2013-1023 on VIR Community →

Community-verified mitigations for this CVE will appear above when contributors publish them.

Verify integrity in audit chain (admin only). AS-IS.