WebKit in Safari in Apple Mac OS X 10.4.11 and 10.5.1, iPhone 1.0 through 1.1.2, and iPod touch 1.1 through 1.1.2 allows remote attackers to "navigate the subframes of any other page," which can be leveraged to conduct cross-site scripting (XSS) attacks and obtain sensitive information.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2007-12-19T21:00:00
Updated: 2024-08-07T15:47:00.488Z
Reserved: 2007-11-06T00:00:00
Link: CVE-2007-5858
Vulnrichment
No data.
NVD
Status : Modified
Published: 2007-12-19T21:46:00.000
Modified: 2022-08-09T13:46:58.963
Link: CVE-2007-5858
Redhat
No data.