CVE-2012-3694

2012-07-25T19:55:00
ID CVE-2012-3694
Type cve
Reporter cve@mitre.org
Modified 2012-11-30T05:00:00

Description

WebKit in Apple Safari before 6.0 does not properly handle drag-and-drop events, which allows user-assisted remote attackers to obtain sensitive information about full pathnames via a crafted web site.