EUVD-2011-3206

Malware in sbrugna...

Apple Safari WebKit Private Browsing模式Cookie限制绕过漏洞

CVE ID: CVE-2011-3242 Safari是苹果计算机的最新作业系统Mac OS X中的浏览器，使用了KDE的KHTML作为浏览器的运算核心。 Safari在Private Browsing模式中处理cookie时存在逻辑错误，即使"Block cookies"设置为“Always”也会设置cookie。 Apple Mac OS X 10.6.8 Apple Mac OS X Server v10.6.8 Apple OS X Lion 10.7.2 Apple OS X Lion Server 10.7.2 厂商补丁： Apple -----...

CVE-2011-3242

The Private Browsing feature in Apple Safari before 5.1.1 on Mac OS X does not properly recognize the Always value of the Block Cookies setting, which makes it easier for remote web servers to track users via a cookie...