CVE Vulnerabilities

CVE-2005-0976

Published: May 02, 2005 | Modified: Sep 05, 2008
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

AppleWebKit (WebCore and WebKit), as used in multiple products such as Safari 1.2 and OmniGroup OmniWeb 5.1, allows remote attackers to read arbitrary files via the XMLHttpRequest Javascript component, as demonstrated using automatically mounted disk images and file:// URLs.

Affected Software

Name Vendor Start Version End Version
Safari Apple 1.2 (including) 1.2 (including)
Shiira Hmdt 0.93 (including) 0.93 (including)
Omniweb Omnigroup 5.1 (including) 5.1 (including)

References