[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Same origin policy security bypass vulnerability in Google Chrome and Apple Safari via vectors related to replacement of IFRAME elements (Mac OS X)

ID: oval:org.secpod.oval:def:5057Date: (C)2012-04-06   (M)2023-11-18
Class: VULNERABILITYFamily: macos




The host is installed with Google Chrome before 18.0.1025.151 or Apple Safari before 6.0 and is prone to same origin policy security bypass vulnerability. A flaw is present in the applications, which fail to handle IFRAME elements. Successful exploitation could allow remote attackers to bypass the same origin policy via vectors related to replacement of IFRAME elements.

Platform:
Apple Mac OS 14
Apple Mac OS 13
Apple Mac OS 12
Apple Mac OS 11
Apple Mac OS X 10.15
Apple Mac OS X 10.14
Apple Mac OS X 10.13
Apple Mac OS X 10.8
Apple Mac OS X 10.9
Apple Mac OS X 10.10
Apple Mac OS X 10.11
Apple Mac OS X 10.12
Apple Mac OS X Server 10.8
Apple Mac OS X Server 10.9
Apple Mac OS X Server 10.10
Apple Mac OS X Server 10.11
Apple Mac OS X Server 10.12
Product:
Google Chrome
Apple Safari
Reference:
CVE-2011-3067
CVE    1
CVE-2011-3067
CPE    2
cpe:/a:google:chrome
cpe:/a:apple:safari

© SecPod Technologies