Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-g3qc-wqfg-m6jq

Опубликовано: 01 мая 2022
Источник: github
Github: Не прошло ревью

Описание

Apple Safari allows web sites to set cookies for country-specific top-level domains, such as co.uk and com.au, which could allow remote attackers to perform a session fixation attack and hijack a user's HTTP session, aka "Cross-Site Cooking," a related issue to CVE-2004-0746, CVE-2004-0866, and CVE-2004-0867.

Apple Safari allows web sites to set cookies for country-specific top-level domains, such as co.uk and com.au, which could allow remote attackers to perform a session fixation attack and hijack a user's HTTP session, aka "Cross-Site Cooking," a related issue to CVE-2004-0746, CVE-2004-0866, and CVE-2004-0867.

Ссылки

EPSS

Процентиль: 83%
0.01834
Низкий

CVE ID

CVE-2008-3170

Связанные уязвимости

nvd логотип

CVE-2008-3170

nvd
больше 17 лет назад

Apple Safari allows web sites to set cookies for country-specific top-level domains, such as co.uk and com.au, which could allow remote attackers to perform a session fixation attack and hijack a user's HTTP session, aka "Cross-Site Cooking," a related issue to CVE-2004-0746, CVE-2004-0866, and CVE-2004-0867.

EPSS

Процентиль: 83%
0.01834
Низкий

CVE ID

CVE-2008-3170