|
|
CVE Reference: CVE-2007-2400 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2007-2400 |
|
|
Description: Race condition in Apple Safari 3 Beta before 3.0.2 on Mac OS X, Windows XP, Windows Vista, and iPhone before 1.0.1, allows remote attackers to bypass the JavaScript security model and modify pages outside of the security domain and conduct cross-site scripting (XSS) attacks via vectors related to page updating and HTTP redirects. |
|
|
CVE Status: Candidate |
|
|
References: ST 1018282 SAID Secunia Advisory: SA26287 OSVDB 36452 CONFIRM http://docs.info.apple.com/article.html?artnum=306173 CERT-VN 289988 BID 24599 APPLE http://lists.apple.com/archives/Security-announce/2007/Jun/msg00004.html |
|
| Return to the previous page. |
