CVE-2007-2400
Apple Safari affected: Safari 3 Beta up to 3.0.2 and iPhone Safari before 1.0.1. Root cause is a race condition during page updates and HTTP redirects, enabling cross-domain access and cross-site scripting via same-origin violations. Impact described as bypassing JavaScript security model and mod...