CVE-2007-3760 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2007-3760
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-3760

Description: Cross-site scripting (XSS) vulnerability in Safari in Apple iPhone 1.1.1, and Safari 3 before Beta Update 3.0.4 on Windows and Mac OS X 10.4 through 10.4.10, allows remote attackers to inject arbitrary web script or HTML via frame tags.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/36859 ST 1018752 SAID Secunia Advisory: SA26983 Secunia Advisory: SA27643 CONFIRM http://docs.info.apple.com/article.html?artnum=307041 http://docs.info.apple.com/article.html?artnum=306586 CERT http://www.us-cert.gov/cas/techalerts/TA07-319A.html BID 25850 26444 APPLE http://lists.apple.com/archives/Security-announce/2007/Nov/msg00003.html http://lists.apple.com/archives/security-announce/2007/Sep/msg00001.html

Return to the previous page.