PT-2011-2143 · Apple · Ios+1
Publicado
2011-03-11
·
Atualizado
2017-08-17
·
CVE-2011-0161
CVSS v2.0
4.3
Média
| Vetor | AV:N/AC:M/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
Apple Safari versions prior to 5.0.4
iOS versions prior to 4.3
Description
The issue allows remote attackers to bypass the Same Origin Policy and inject Cascading Style Sheets (CSS) token sequences via a crafted web site, due to improper handling of the Attr.style accessor.
Recommendations
For Apple Safari versions prior to 5.0.4, update to version 5.0.4 or later.
For iOS versions prior to 4.3, update to version 4.3 or later.
Correção
RCE
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Safari
Ios