Описание
Cross-domain vulnerability in Apple Safari for Windows 3.0.2 allows remote attackers to bypass the Same Origin Policy and access restricted information from other domains via JavaScript that overwrites the document variable and statically sets the document.domain attribute to a file:// location, a different vector than CVE-2007-3482.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:apple:safari:3.0.2:*:windows:*:*:*:*:*
EPSS
Процентиль: 38%
0.00165
Низкий
8.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Cross-domain vulnerability in Apple Safari for Windows 3.0.2 allows remote attackers to bypass the Same Origin Policy and access restricted information from other domains via JavaScript that overwrites the document variable and statically sets the document.domain attribute to a file:// location, a different vector than CVE-2007-3482.
EPSS
Процентиль: 38%
0.00165
Низкий
8.5 High
CVSS2
Дефекты
NVD-CWE-Other