Описание
Safari version 2.0 (412) does not clearly associate a Javascript dialog box with the web page that generated it, which allows remote attackers to spoof a dialog box from a trusted site and facilitates phishing attacks, aka the "Dialog Origin Spoofing Vulnerability."
Ссылки
- Exploit
- ExploitVendor Advisory
- Exploit
- ExploitVendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:apple:safari:2.0:*:*:*:*:*:*:*
EPSS
Процентиль: 79%
0.01251
Низкий
2.6 Low
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Safari version 2.0 (412) does not clearly associate a Javascript dialog box with the web page that generated it, which allows remote attackers to spoof a dialog box from a trusted site and facilitates phishing attacks, aka the "Dialog Origin Spoofing Vulnerability."
EPSS
Процентиль: 79%
0.01251
Низкий
2.6 Low
CVSS2
Дефекты
NVD-CWE-Other