CVE-2007-3514

Name of the Vulnerable Software and Affected Versions Apple Safari for Windows version 3.0.2

Description A cross-domain issue allows remote attackers to bypass the Same Origin Policy, accessing restricted information from other domains. This is achieved via JavaScript that overwrites the document variable and sets the document.domain attribute to a file:// location.

Recommendations For Apple Safari for Windows version 3.0.2, consider disabling JavaScript execution from file:// locations as a temporary workaround until a patch is available. Restrict access to sensitive information to minimize the risk of exploitation.