PT-2015-5112 · Apple · Safari
Joseph Winn
·
Publicado
2015-04-10
·
Atualizado
2015-09-11
·
CVE-2015-1128
CVSS v2.0
5.0
Média
| Vetor | AV:N/AC:L/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Apple Safari versions prior to 6.2.5
Apple Safari versions 7.x prior to 7.1.5
Apple Safari versions 8.x prior to 8.0.5
Description
The issue affects the private-browsing implementation, allowing attackers to obtain sensitive browsing-history information. This is achieved through vectors involving push-notification requests.
Recommendations
For Apple Safari versions prior to 6.2.5, update to version 6.2.5 or later.
For Apple Safari versions 7.x prior to 7.1.5, update to version 7.1.5 or later.
For Apple Safari versions 8.x prior to 8.0.5, update to version 8.0.5 or later.
Correção
Information Disclosure
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Safari