PT-2007-3742 · Apple · Macos X+1

Publicado

2007-08-03

Atualizado

2017-07-29

CVE-2007-2409

CVSS v2.0

4.3

Média

Vetor

AV:N/AC:M/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Apple Mac OS X versions 10.3.9 through 10.4.10

Description The issue allows remote attackers to obtain sensitive information via a popup window. This popup window can read the current URL of the parent window, potentially exposing sensitive data.

Recommendations For Apple Mac OS X versions 10.3.9 through 10.4.10, consider disabling popup windows in WebCore as a temporary workaround until a patch is available. Restrict access to sensitive information to minimize the risk of exploitation.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2007-2409

Produtos afetados

Macos X

Webcore

PT-2007-3742 · Apple · Macos X+1

CVE-2007-2409

Identificadores relacionados

Produtos afetados

Referências · 8