Information disclosure vulnerability in Apple Safari via JavaScript code that forces keystroke events for input fields (Mac OS X)ID: oval:org.secpod.oval:def:3691 | Date: (C)2012-01-07 (M)2023-11-18 |
Class: VULNERABILITY | Family: macos |
The host is installed with Apple Safari before 5.0.1 or 4.1.1 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle JavaScript code that forces keystroke events for input fields. Successful exploitation could allow attackers to obtain sensitive Address Book Card information.
Platform: |
Apple Mac OS X 10.8 |
Apple Mac OS X 10.9 |
Apple Mac OS X 10.10 |
Apple Mac OS X Server 10.8 |
Apple Mac OS X Server 10.9 |
Apple Mac OS X Server 10.10 |