Lucene search

K

MitreCVELIST:CVE-2007-4692

HistoryNov 15, 2007 - 12:00 a.m.

CVE-2007-4692

2007-11-1500:00:00

mitre

www.cve.org

7.2 High

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

82.3%

The tabbed browsing feature in Apple Safari 3 before Beta Update 3.0.4 on Windows, and Mac OS X 10.4 through 10.4.10, allows remote attackers to spoof HTTP authentication for other sites and possibly conduct phishing attacks by causing an authentication sheet to be displayed for a tab that is not active, which makes it appear as if it is associated with the active tab.

References

docs.info.apple.com/article.html?artnum=307041

lists.apple.com/archives/security-announce/2007/Nov/msg00002.html

lists.apple.com/archives/security-announce/2007/Nov/msg00003.html

osvdb.org/40662

secunia.com/advisories/27643

www.securityfocus.com/bid/26444

www.securityfocus.com/bid/26447

www.us-cert.gov/cas/techalerts/TA07-319A.html

www.vupen.com/english/advisories/2007/3868

exchange.xforce.ibmcloud.com/vulnerabilities/38460

7.2 High

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

82.3%

Related for CVELIST:CVE-2007-4692

nvd1 prion1 cve1 seebug1 nessus1