ID | CVE-2008-1007 | ||||||
Sažetak | WebCore, as used in Apple Safari before 3.1, does not enforce the frame navigation policy for Java applets, which allows remote attackers to conduct cross-site scripting (XSS) attacks. | ||||||
Reference |
|
||||||
CVSS |
|
||||||
Pristup |
|
||||||
Impact |
|
||||||
CVSS vektor | AV:N/AC:M/Au:N/C:N/I:P/A:N | ||||||
Zadnje važnije ažuriranje | 08-08-2017 - 01:29 | ||||||
Objavljeno | 19-03-2008 - 00:44 |