CVE-2011-0159

Sažetak

The Safari Settings feature in Safari in Apple iOS 4.x before 4.3 does not properly implement the clearing of cookies during execution of the Safari application, which might make it easier for remote web servers to track users by setting a cookie.

Reference

http://lists.apple.com/archives/security-announce/2011//Mar/msg00003.html
http://support.apple.com/kb/HT4564
http://www.securityfocus.com/bid/46810
http://www.securitytracker.com/id?1025182

CVSS

Base:	5.0
Impact:	2.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:N/A:N

Zadnje važnije ažuriranje

31-03-2011 - 03:29

Objavljeno

11-03-2011 - 22:55