WebKit in Apple Safari before 6.2.1, 7.x before 7.1.1, and 8.x before 8.0.1 allows remote attackers to bypass the Same Origin Policy via crafted Cascading Style Sheets (CSS) token sequences within an SVG file in the SRC attribute of an IMG element.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: apple
Published: 2014-12-10T21:00:00
Updated: 2024-08-06T11:20:26.580Z
Reserved: 2014-06-20T00:00:00
Link: CVE-2014-4465
Vulnrichment
No data.
NVD
Status : Modified
Published: 2014-12-10T21:59:03.257
Modified: 2024-11-21T02:10:14.937
Link: CVE-2014-4465
Redhat
No data.