CVE-2013-0973

Name of the Vulnerable Software and Affected Versions Apple Mac OS X versions through 10.7.5

Description The issue concerns a software update in Apple Mac OS X that fails to prevent plugin loading within the marketing-text WebView. This allows man-in-the-middle attackers to execute plugin code by modifying the client-server data stream.

Recommendations For Apple Mac OS X versions through 10.7.5, consider disabling the plugin loading feature within the marketing-text WebView as a temporary workaround until a patch is available. Restrict access to the WebView to minimize the risk of exploitation.