What is the severity of CVE-2010-1384?

CVE-2010-1384 is considered a moderate severity vulnerability due to its potential exploitation in phishing attacks.

How do I fix CVE-2010-1384?

To fix CVE-2010-1384, upgrade to Apple Safari 5.0 or later on affected operating systems.

What software is affected by CVE-2010-1384?

CVE-2010-1384 affects Apple Safari versions prior to 5.0 on Mac OS X 10.5 through 10.6 and Windows, as well as versions prior to 4.1 on Mac OS X 10.4.

What kind of attack is possible with CVE-2010-1384?

CVE-2010-1384 can be exploited to conduct phishing attacks through crafted URLs that include usernames and passwords.

Is there a workaround for CVE-2010-1384?

There is no specific workaround for CVE-2010-1384; the recommended action is to update to a secure version of Safari.

Vulnerability/
CVE-2010-1384

medium

4.3

CWE

200

11/6/2010

7/8/2024

CVE-2010-1384: Infoleak

First published: Fri Jun 11 2010(Updated: )

Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, does not provide a warning about a (1) http or (2) https URL that contains a username and password, which makes it easier for remote attackers to conduct phishing attacks via a crafted URL.

Credit: product-security@apple.com

Affected Software	Affected Version	How to fix
Apple Safari	<=4.0.5
Apple Safari	=4.0
Apple Safari	=4.0.0b
Apple Safari	=4.0.1
Apple Safari	=4.0.2
Apple Safari	=4.0.3
Apple Safari	=4.0.4
macOS Yosemite	=10.5
macOS Yosemite	=10.5.0
macOS Yosemite	=10.5.1
macOS Yosemite	=10.5.2
macOS Yosemite	=10.5.3
macOS Yosemite	=10.5.4
macOS Yosemite	=10.5.5
macOS Yosemite	=10.5.6
macOS Yosemite	=10.5.7
macOS Yosemite	=10.5.8
macOS Yosemite	=10.6.0
macOS Yosemite	=10.6.1
macOS Yosemite	=10.6.2
macOS Yosemite	=10.6.3
Apple Mac OS X Server	=10.5
Apple Mac OS X Server	=10.5.0
Apple Mac OS X Server	=10.5.1
Apple Mac OS X Server	=10.5.2
Apple Mac OS X Server	=10.5.3
Apple Mac OS X Server	=10.5.4
Apple Mac OS X Server	=10.5.5
Apple Mac OS X Server	=10.5.6
Apple Mac OS X Server	=10.5.7
Apple Mac OS X Server	=10.5.8
Apple Mac OS X Server	=10.6.0
Apple Mac OS X Server	=10.6.1
Apple Mac OS X Server	=10.6.2
Apple Mac OS X Server	=10.6.3
Microsoft Windows 7
Microsoft Windows Vista
Microsoft Windows XP	=sp2
Microsoft Windows XP	=sp3
macOS Yosemite	=10.4
macOS Yosemite	=10.4.0
macOS Yosemite	=10.4.1
macOS Yosemite	=10.4.2
macOS Yosemite	=10.4.3
macOS Yosemite	=10.4.4
macOS Yosemite	=10.4.5
macOS Yosemite	=10.4.6
macOS Yosemite	=10.4.7
macOS Yosemite	=10.4.8
macOS Yosemite	=10.4.9
macOS Yosemite	=10.4.10
macOS Yosemite	=10.4.11
Apple Mac OS X Server	=10.4
Apple Mac OS X Server	=10.4.0
Apple Mac OS X Server	=10.4.1
Apple Mac OS X Server	=10.4.2
Apple Mac OS X Server	=10.4.3
Apple Mac OS X Server	=10.4.4
Apple Mac OS X Server	=10.4.5
Apple Mac OS X Server	=10.4.6
Apple Mac OS X Server	=10.4.7
Apple Mac OS X Server	=10.4.8
Apple Mac OS X Server	=10.4.9
Apple Mac OS X Server	=10.4.10
Apple Mac OS X Server	=10.4.11

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2010-1384?
CVE-2010-1384 is considered a moderate severity vulnerability due to its potential exploitation in phishing attacks.
How do I fix CVE-2010-1384?
To fix CVE-2010-1384, upgrade to Apple Safari 5.0 or later on affected operating systems.
What software is affected by CVE-2010-1384?
CVE-2010-1384 affects Apple Safari versions prior to 5.0 on Mac OS X 10.5 through 10.6 and Windows, as well as versions prior to 4.1 on Mac OS X 10.4.
What kind of attack is possible with CVE-2010-1384?
CVE-2010-1384 can be exploited to conduct phishing attacks through crafted URLs that include usernames and passwords.
Is there a workaround for CVE-2010-1384?
There is no specific workaround for CVE-2010-1384; the recommended action is to update to a secure version of Safari.

collector/nvd-historical
agent/references
agent/type
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/severity
agent/author
agent/weakness
agent/remedy
agent/description
agent/first-publish-date
agent/event
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
agent/softwarecombine
vendor/apple
canonical/apple safari
version/apple safari/4.0.5
version/apple safari/4.0
version/apple safari/4.0.0b
version/apple safari/4.0.1
version/apple safari/4.0.2
version/apple safari/4.0.3
version/apple safari/4.0.4
canonical/macos yosemite
version/macos yosemite/10.5
version/macos yosemite/10.5.0
version/macos yosemite/10.5.1
version/macos yosemite/10.5.2
version/macos yosemite/10.5.3
version/macos yosemite/10.5.4
version/macos yosemite/10.5.5
version/macos yosemite/10.5.6
version/macos yosemite/10.5.7
version/macos yosemite/10.5.8
version/macos yosemite/10.6.0
version/macos yosemite/10.6.1
version/macos yosemite/10.6.2
version/macos yosemite/10.6.3
canonical/apple mac os x server
version/apple mac os x server/10.5
version/apple mac os x server/10.5.0
version/apple mac os x server/10.5.1
version/apple mac os x server/10.5.2
version/apple mac os x server/10.5.3
version/apple mac os x server/10.5.4
version/apple mac os x server/10.5.5
version/apple mac os x server/10.5.6
version/apple mac os x server/10.5.7
version/apple mac os x server/10.5.8
version/apple mac os x server/10.6.0
version/apple mac os x server/10.6.1
version/apple mac os x server/10.6.2
version/apple mac os x server/10.6.3
vendor/microsoft
canonical/microsoft windows 7
canonical/microsoft windows vista
canonical/microsoft windows xp
version/microsoft windows xp/sp2
version/microsoft windows xp/sp3
version/macos yosemite/10.4
version/macos yosemite/10.4.0
version/macos yosemite/10.4.1
version/macos yosemite/10.4.2
version/macos yosemite/10.4.3
version/macos yosemite/10.4.4
version/macos yosemite/10.4.5
version/macos yosemite/10.4.6
version/macos yosemite/10.4.7
version/macos yosemite/10.4.8
version/macos yosemite/10.4.9
version/macos yosemite/10.4.10
version/macos yosemite/10.4.11
version/apple mac os x server/10.4
version/apple mac os x server/10.4.0
version/apple mac os x server/10.4.1
version/apple mac os x server/10.4.2
version/apple mac os x server/10.4.3
version/apple mac os x server/10.4.4
version/apple mac os x server/10.4.5
version/apple mac os x server/10.4.6
version/apple mac os x server/10.4.7
version/apple mac os x server/10.4.8
version/apple mac os x server/10.4.9
version/apple mac os x server/10.4.10
version/apple mac os x server/10.4.11

CVE-2010-1384: Infoleak

Remedy

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2010-1384?

How do I fix CVE-2010-1384?

What software is affected by CVE-2010-1384?

What kind of attack is possible with CVE-2010-1384?

Is there a workaround for CVE-2010-1384?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2010-1384?

How do I fix CVE-2010-1384?

What software is affected by CVE-2010-1384?

What kind of attack is possible with CVE-2010-1384?

Is there a workaround for CVE-2010-1384?