CVE Reference: CVE-2010-0314

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2010-0314

Description:
Apple Safari allows remote attackers to discover a redirect's target URL, for the session of a specific user of a web site, by placing the site's URL in the HREF attribute of a stylesheet LINK element, and then reading the document.styleSheets[0].href property value.

CVE Status:
Candidate

References:

UBUNTU
  http://www.ubuntu.com/usn/USN-1006-1

SAID
  Secunia Advisory: SA41856

MISC
  http://nomoreroot.blogspot.com/2010/01/little-bug-in-safari-and-google-chrome.html

MANDRIVA
  http://www.mandriva.com/security/advisories?name=MDVSA-2011:039


Return to the previous page.