CVE Reference: CVE-2004-0720

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2004-0720

Description:
Safari 1.2.2 does not properly prevent a frame in one domain from injecting content into a frame that belongs to another domain, which facilitates web site spoofing and other attacks, aka the frame injection vulnerability.

CVE Status:
Candidate

References:

XF
  http://xforce.iss.net/xforce/xfdb/1598

SAID
  Secunia Advisory: SA11978

MISC
  http://secunia.com/multiple_browsers_frame_injection_vulnerability_test/


Return to the previous page.