CVE-2004-1122
First published: Fri Dec 10 2004(Updated: )
Safari 1.x to 1.2.4, and possibly other versions, allows inactive windows to launch dialog boxes, which can allow remote attackers to spoof the dialog boxes from web sites in other windows, aka the "Dialog Box Spoofing Vulnerability," a different vulnerability than CVE-2004-1314.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Safari | =1.2.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2004-1122?
CVE-2004-1122 is classified as a moderate severity vulnerability due to its potential for exploitation through dialog box spoofing.
How do I fix CVE-2004-1122?
To mitigate CVE-2004-1122, users should upgrade to a newer version of Safari that addresses this vulnerability.
What systems are affected by CVE-2004-1122?
CVE-2004-1122 affects Safari versions 1.x to 1.2.4 and possibly other versions.
What is the nature of the vulnerability described in CVE-2004-1122?
CVE-2004-1122 involves the ability of inactive Safari windows to launch dialog boxes, allowing remote spoofing of dialog content.
Are there any known exploits for CVE-2004-1122?
While CVE-2004-1122 has been documented, specific exploit details are not commonly available, emphasizing the need for software updates.
- agent/type
- agent/references
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/severity
- agent/last-modified-date
- agent/weakness
- agent/description
- agent/event
- agent/first-publish-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-historical
- vendor/apple
- product/safari
- canonical/apple safari
- agent/software-canonical-lookup-request
- collector/nvd-index
- canonical/safari
- version/safari/1.2.3