First published: Thu Sep 27 2007(Updated: )
Unspecified vulnerability in Safari in Apple iPhone 1.1.1, and Safari 3 before Beta Update 3.0.4 on Windows and Mac OS X 10.4 through 10.4.10, allows remote attackers to "alter or access" HTTPS content via an HTTP session with a crafted web page that causes Javascript to be applied to HTTPS pages from the same domain.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Apple iPhone OS | =1.1.1 | |
Apple Safari | ||
Apple Mac OS X | =10.4 | |
Apple Mac OS X | =10.4.1 | |
Apple Mac OS X | =10.4.2 | |
Apple Mac OS X | =10.4.3 | |
Apple Mac OS X | =10.4.4 | |
Apple Mac OS X | =10.4.5 | |
Apple Mac OS X | =10.4.6 | |
Apple Mac OS X | =10.4.7 | |
Apple Mac OS X | =10.4.8 | |
Apple Mac OS X | =10.4.9 | |
Apple Mac OS X | =10.4.10 | |
Microsoft Windows Vista | ||
Microsoft Windows XP | ||
Apple Safari | <=3.0.3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.