PT-2010-3400 · Apple+1 · Safari+2
Published
2010-06-11
·
Updated
2017-09-19
·
CVE-2010-1762
CVSS v2.0
4.3
Medium
| Vector | AV:N/AC:M/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
Apple Safari versions prior to 5.0 on Mac OS X 10.5 through 10.6 and Windows
Apple Safari versions prior to 4.1 on Mac OS X 10.4
Description
A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via vectors involving HTML in a
TEXTAREA element.Recommendations
For Apple Safari versions prior to 5.0 on Mac OS X 10.5 through 10.6 and Windows, update to version 5.0 or later.
For Apple Safari versions prior to 4.1 on Mac OS X 10.4, update to version 4.1 or later.
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Macos X
Safari
Windows