CVE-2012-3742

2012-09-20T21:55:00
ID CVE-2012-3742
Type cve
Reporter cve@mitre.org
Modified 2017-08-29T01:32:00

Description

Safari in Apple iOS before 6 does not properly restrict use of an unspecified Unicode character that looks similar to the https lock indicator, which allows remote attackers to spoof https connections by placing this character in the TITLE element of a web page.