WebKit in Safari in Apple Mac OS X 10.4.11 and 10.5.1, iPhone 1.0 through 1.1.2, and iPod touch 1.1 through 1.1.2 allows remote attackers to "navigate the subframes of any other page," which can be leveraged to conduct cross-site scripting (XSS) attacks and obtain sensitive information.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-12-19T21:00:00

Updated: 2024-08-07T15:47:00.488Z

Reserved: 2007-11-06T00:00:00

Link: CVE-2007-5858

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2007-12-19T21:46:00.000

Modified: 2022-08-09T13:46:58.963

Link: CVE-2007-5858

cve-icon Redhat

No data.