Intrusion Prevention

Apple.Safari.Parent.Close.Code.Execution

Description

This indicates an attack attempt against a code-execution vulnerability in Apple Safari.
The vulnerability is caused by an error when the vulnerable software handles a malicious JavaScript. It allows a remote attacker to execute arbitrary code via sending a crafted web page that entices the user to close some popup windows.

Affected Products

Apple Safari 4.x

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Do not open untrusted web pages.

CVE References

CVE-2010-1939