Описание
Apple Safari allows remote attackers to discover a redirect's target URL, for the session of a specific user of a web site, by placing the site's URL in the HREF attribute of a stylesheet LINK element, and then reading the document.styleSheets[0].href property value.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | not-affected | no webkit |
| devel | not-affected | webkit isn't built |
| hardy | not-affected | no webkit |
| intrepid | ignored | end of life, was needed |
| jaunty | ignored | end of life |
| karmic | ignored | end of life |
| lucid | ignored | end of life |
| maverick | not-affected | webkit isn't built |
| natty | not-affected | webkit isn't built |
| oneiric | not-affected | webkit isn't built |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | not-affected | 1.1.90-1 |
| hardy | ignored | end of life |
| intrepid | ignored | end of life, was needed |
| jaunty | ignored | end of life |
| karmic | released | 1.2.5-0ubuntu0.9.10.1 |
| lucid | not-affected | 1.1.90-1 |
| maverick | not-affected | 1.1.90-1 |
| natty | not-affected | 1.1.90-1 |
| oneiric | not-affected | 1.1.90-1 |
Показывать по
EPSS
5 Medium
CVSS2
Связанные уязвимости
Apple Safari allows remote attackers to discover a redirect's target URL, for the session of a specific user of a web site, by placing the site's URL in the HREF attribute of a stylesheet LINK element, and then reading the document.styleSheets[0].href property value.
Apple Safari allows remote attackers to discover a redirect's target U ...
Apple Safari allows remote attackers to discover a redirect's target URL, for the session of a specific user of a web site, by placing the site's URL in the HREF attribute of a stylesheet LINK element, and then reading the document.styleSheets[0].href property value.
EPSS
5 Medium
CVSS2