The user interface in WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, does not display URLs consistently, which makes it easier for remote attackers to conduct phishing attacks via a crafted URL.
References
Link | Resource |
---|---|
http://lists.apple.com/archives/security-announce/2015/Mar/msg00004.html | Vendor Advisory |
https://support.apple.com/HT204560 | Vendor Advisory |
http://www.securitytracker.com/id/1031936 | |
http://lists.apple.com/archives/security-announce/2015/Apr/msg00002.html | Vendor Advisory |
https://support.apple.com/HT204661 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Information
Published : 2015-03-18 15:59
Updated : 2015-09-30 10:39
NVD link : CVE-2015-1084
Mitre link : CVE-2015-1084
JSON object : View
CWE
CWE-17
DEPRECATED: Code
Products Affected
apple
- iphone_os
- safari