[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2008-3644Date: (C)2008-11-17   (M)2023-12-22


Apple Safari before 3.2 does not properly prevent caching of form data for form fields that have autocomplete disabled, which allows local users to obtain sensitive information by reading the browser's page cache.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 1.9
Exploit Score: 3.4
Impact Score: 2.9
 
CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: PARTIAL
Integrity: NONE
Availability: NONE
  
Reference:
SECTRACK-1021226
BID-32291
SECUNIA-32706
SECUNIA-32756
ADV-2008-3232
APPLE-SA-2008-11-13
APPLE-SA-2008-11-20
http://support.apple.com/kb/HT3298
http://support.apple.com/kb/HT3318

CPE    29
cpe:/a:apple:safari
cpe:/a:apple:safari:1.0
cpe:/a:apple:safari:1.3
cpe:/a:apple:safari:2.0
...
CWE    1
CWE-200
OVAL    2
oval:org.secpod.oval:def:17229
oval:org.secpod.oval:def:17233

© SecPod Technologies