CVE-2008-2306

2008-06-23T20:41:00
ID CVE-2008-2306
Type cve
Reporter cve@mitre.org
Modified 2011-03-08T03:08:00

Description

Apple Safari before 3.1.2 on Windows does not properly interpret the URLACTION_SHELL_EXECUTE_HIGHRISK Internet Explorer zone setting, which allows remote attackers to bypass intended access restrictions, and force a client system to download and execute arbitrary files.