Lucene search

PRIOn knowledge basePRION:CVE-2010-0044

HistoryMar 15, 2010 - 1:28 p.m.

Code injection

2010-03-1513:28:00

PRIOn knowledge base

www.prio-n.com

6.6 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

0.004 Low

EPSS

Percentile

73.1%

JSON

PubSub in Apple Safari before 4.0.5 does not properly implement use of the Accept Cookies preference to block cookies, which makes it easier for remote web servers to track users by setting a cookie in a (1) RSS or (2) Atom feed.

CPENameOperatorVersion
safarieq4.0.2
safarieq4.0.1
safarile4.0.4
safarieq4.0.3
safarieq4.0
safarieq4.0.98

Name	Operator	Version
safari	eq	4.0.2
safari	eq	4.0.1
safari	le	4.0.4
safari	eq	4.0.3
safari	eq	4.0
safari	eq	4.0.98

References

lists.apple.com/archives/security-announce/2010/Mar/msg00000.html

osvdb.org/62937

support.apple.com/kb/HT4070

www.securityfocus.com/bid/38671

www.securityfocus.com/bid/38675

exchange.xforce.ibmcloud.com/vulnerabilities/56830

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7051

6.6 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

0.004 Low

EPSS

Percentile

73.1%

JSON

Related for PRION:CVE-2010-0044