WebKit does not properly restrict focus changes, which allows remote attackers to read keystrokes via cross-domain IFRAME gadgets, a different vulnerability than CVE-2010-1126, CVE-2010-1422, and CVE-2010-2295.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Webkit |
Apple |
* |
* |
References