Rennie Degraaf

**Name of the Vulnerable Software and Affected Versions** Apple Safari versions prior to 6.2.1 Apple Safari versions 7.x prior to 7.1.1 Apple Safari versions 8.x prior to 8.0.1 **Description** The issue allows remote attackers to bypass the Same Origin Policy. This is achieved through crafted Cascading Style Sheets (CSS) token sequences within an SVG file in the SRC attribute of an IMG element. **Recommendations** For Apple Safari versions prior to 6.2.1, update to version 6.2.1 or later. For Apple Safari versions 7.x prior to 7.1.1, update to version 7.1.1 or later. For Apple Safari versions 8.x prior to 8.0.1, update to version 8.0.1 or later.