Cross-domain vulnerability in Apple Safari 2.0.4 allows remote attackers to access restricted information from other domains via Javascript, as demonstrated by a js script that accesses the location information of cross-domain web pages, probably involving setTimeout and timed events.
References
Configurations
Information
Published : 2007-05-24 11:30
Updated : 2008-11-14 22:50
NVD link : CVE-2007-2843
Mitre link : CVE-2007-2843
JSON object : View
CWE
Products Affected
apple
- safari