PT-2007-5859 · Apple · Webkit+2
Published
2007-11-15
·
Updated
2017-07-29
·
CVE-2007-4701
CVSS v2.0
2.1
Low
| Vector | AV:L/AC:L/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions:
Apple Mac OS X versions 10.4 through 10.4.10
Description:
The issue allows local users to read the contents of a file when Safari is previewing a PDF file, due to insecure creation of temporary files by WebKit.
Recommendations:
For Apple Mac OS X versions 10.4 through 10.4.10, consider restricting access to sensitive files when using Safari to preview PDF files until a secure method for creating temporary files is implemented.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Macos X
Safari
Webkit