CVE Vulnerabilities

CVE-2007-3514

Published: Jul 03, 2007 | Modified: Oct 30, 2012
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
8.5 HIGH
AV:N/AC:L/Au:N/C:C/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

Cross-domain vulnerability in Apple Safari for Windows 3.0.2 allows remote attackers to bypass the Same Origin Policy and access restricted information from other domains via JavaScript that overwrites the document variable and statically sets the document.domain attribute to a file:// location, a different vector than CVE-2007-3482.

Affected Software

Name Vendor Start Version End Version
Safari Apple 3.0.2 (including) 3.0.2 (including)

References