CVE-2008-4232

2008-11-2523:00:00

mitre

www.cve.org

5.9 Medium

AI Score

Confidence

Low

0.008 Low

EPSS

Percentile

81.5%

JSON

Safari in Apple iPhone OS 2.0 through 2.1 and iPhone OS for iPod touch 2.1 through 2.1 does not restrict an IFRAME’s content display to the boundaries of the IFRAME, which allows remote attackers to spoof a user interface via a crafted HTML document.

References

lists.apple.com/archives/security-announce/2008/Nov/msg00002.html

osvdb.org/50029

secunia.com/advisories/32756

support.apple.com/kb/HT3318

www.securityfocus.com/bid/32394

www.securitytracker.com/id?1021272

www.vupen.com/english/advisories/2008/3232