Design/Logic Flaw

2009-06-1018:00:00

PRIOn knowledge base

www.prio-n.com

7.5 High

AI Score

Confidence

Low

0.033 Low

EPSS

Percentile

91.4%

JSON

Apple Safari before 4.0 does not prevent calls to the open-help-anchor URL handler by web sites, which allows remote attackers to open arbitrary local help files, and execute arbitrary code or obtain sensitive information, via a crafted call.

CPENameOperatorVersion
safarieq3.1.2 mac
safarieq3.2.1 mac
safarieq0.9 mac
safarieq1.3.2 mac
safarieq1.2 mac
safarieq3.0.4 mac
safarieq3.0.3 mac
safarieq1.3.1 mac
safarieq2.0.4 mac
safarieq3.0 mac

Name	Operator	Version
safari	eq	3.1.2 mac
safari	eq	3.2.1 mac
safari	eq	0.9 mac
safari	eq	1.3.2 mac
safari	eq	1.2 mac
safari	eq	3.0.4 mac
safari	eq	3.0.3 mac
safari	eq	1.3.1 mac
safari	eq	2.0.4 mac
safari	eq	3.0 mac