CVE-2007-2409 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2007-2409
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-2409

Description: Cross-domain vulnerability in WebCore on Apple Mac OS X 10.3.9 and 10.4.10 allows remote attackers to obtain sensitive information via a popup window, which is able to read the current URL of the parent window.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/35740 ST 1018494 SAID Secunia Advisory: SA26235 CONFIRM http://docs.info.apple.com/article.html?artnum=306172 BID 25159 APPLE http://lists.apple.com/archives/security-announce//2007/Jul/msg00004.html

Return to the previous page.