CVE-2007-4698

Name of the Vulnerable Software and Affected Versions: Apple Safari versions 3 before Beta Update 3.0.4 Apple Safari on Mac OS X versions 10.4 through 10.4.10

Description: The issue allows remote attackers to conduct cross-site scripting (XSS) attacks by causing JavaScript events to be associated with the wrong frame. This can lead to unauthorized actions being taken on behalf of the user.

Recommendations: For Apple Safari versions 3 before Beta Update 3.0.4, update to Beta Update 3.0.4 or later to resolve the issue. For Apple Safari on Mac OS X versions 10.4 through 10.4.10, consider upgrading to a later version of Mac OS X that includes an updated version of Apple Safari.