Cross-domain vulnerability in Apple Safari for Windows 3.0.2 allows remote attackers to bypass the Same Origin Policy and access restricted information from other domains via JavaScript that overwrites the document variable and statically sets the document.domain attribute to a file:// location, a different vector than CVE-2007-3482.
References
Link | Resource |
---|---|
http://www.0x000000.com/?i=371 | |
http://osvdb.org/38861 |
Configurations
Information
Published : 2007-07-03 03:30
Updated : 2012-10-29 19:52
NVD link : CVE-2007-3514
Mitre link : CVE-2007-3514
JSON object : View
CWE
Products Affected
apple
- safari