Cesar Cerrudo has discovered a vulnerability in Apple Safari, which can be exploited by malicious people to disclose potentially sensitive information.
The vulnerability is caused due to the application following redirects for stylesheets and allowing to read the target URL. This can be exploited on sites that use redirects to URLs containing potentially sensitive information e.g. within the query string.
Do you have additional information related to this advisory?
Please provide information about patches, mitigating factors, new versions, exploits, faulty patches, links, and other relevant data by posting comments to this Advisory. You can also send this
information to firstname.lastname@example.org
Subject: Apple Safari Stylesheet Redirection Information Disclosure