Lucene search
HistoryMar 08, 2012 - 4:15 a.m.
CVE-2011-3844
apple
safari
setinterval
vulnerability
spoofing
address bar
crafted web page
nvd
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
6 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
71.5%
Apple Safari 5.0.5 does not properly implement the setInterval function, which allows remote attackers to spoof the address bar via a crafted web page.
Affected configurations
Node
applesafariMatch5.0.5
| CPE | Name | Operator | Version |
|---|---|---|---|
| apple:safari | apple safari | eq | 5.0.5 |
Related
openvas
openvas
Apple Safari 'setInterval()' Address Bar Spoofing Vulnerability (Windows)
2012-03-13 00:00:00
Apple Safari 'setInterval()' Address Bar Spoofing Vulnerability - Windows
2012-03-13 00:00:00
seebug
seebug
Apple Safari 5.1.2 setInterval()地址栏欺骗漏洞
2012-03-10 00:00:00
prion
prion
Design/Logic Flaw
2012-03-08 04:15:00
cvelist
cvelist
CVE-2011-3844
2012-03-08 02:00:00
nvd
nvd
CVE-2011-3844
2012-03-08 04:15:02
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
6 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
71.5%
Related for CVE-2011-3844