PT-2007-3742 · Apple · Macos X+1

Published

2007-08-03

Updated

2017-07-29

CVE-2007-2409

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Apple Mac OS X versions 10.3.9 through 10.4.10

Description The issue allows remote attackers to obtain sensitive information via a popup window. This popup window can read the current URL of the parent window, potentially exposing sensitive data.

Recommendations For Apple Mac OS X versions 10.3.9 through 10.4.10, consider disabling popup windows in WebCore as a temporary workaround until a patch is available. Restrict access to sensitive information to minimize the risk of exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2007-2409

Affected Products

Macos X

Webcore

PT-2007-3742 · Apple · Macos X+1

CVE-2007-2409

Related Identifiers

Affected Products

References · 8