The plug-in in QuickTime in Apple Mac OS X before 10.6.7 allows remote attackers to bypass the Same Origin Policy and obtain potentially sensitive video data via vectors involving a cross-site redirect.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Information
Published : 2011-03-22 19:00
Updated : 2011-10-20 19:51
NVD link : CVE-2011-0187
Mitre link : CVE-2011-0187
JSON object : View
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
Products Affected
apple
- mac_os_x
- mac_os_x_server
- quicktime