page/Geolocation.cpp in WebCore in WebKit before r56188 and before 1.2.5 does not properly restrict access to the lastPosition function, which has unspecified impact and remote attack vectors, aka rdar problem 7746357.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2010-08-19 15:00
Updated : 2011-08-22 21:00
NVD link : CVE-2010-1386
Mitre link : CVE-2010-1386
JSON object : View
CWE
CWE-264
Permissions, Privileges, and Access Controls
Products Affected
apple
- webkit