Apple Safari 1.x Cookie Path Traversal Information Disclosure

ID SSV:77549
Type seebug
Reporter Root
Modified 2014-07-01T00:00:00


No description provided by source.


Multiple vendor Internet Browsers have been reported to be prone to a cookie path argument restriction bypass vulnerability. The issue presents itself due to a failure to properly sanitize encoded URI content, this may make it possible for an attacker to craft a URI that will contain encoded directory traversal sequences sufficient to provide access to a supposedly path exclusive cookie from an alternate path.<golarge>