Apple Safari 1.0 through 1.2.3 allows remote attackers to spoof the URL displayed in the status bar via TABLE tags.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Safari | Apple | 1.0 (including) | 1.0 (including) |
| Safari | Apple | 1.1 (including) | 1.1 (including) |
| Safari | Apple | 1.2 (including) | 1.2 (including) |
| Safari | Apple | 1.2.1 (including) | 1.2.1 (including) |
| Safari | Apple | 1.2.2 (including) | 1.2.2 (including) |
| Safari | Apple | 1.2.3 (including) | 1.2.3 (including) |
References
- http://lists.apple.com/archives/security-announce/2004/Dec/msg00000.html
- http://secunia.com/advisories/13047/
- http://www.kb.cert.org/vuls/id/925430
- http://www.securityfocus.com/bid/11573
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17909
- http://lists.apple.com/archives/security-announce/2004/Dec/msg00000.html
- http://secunia.com/advisories/13047/
- http://www.kb.cert.org/vuls/id/925430
- http://www.securityfocus.com/bid/11573
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17909