cpe:/a:apple:safari:4.0.5 CVE-2010-1940 2010-05-14T16:30:01.530-04:00 2017-08-16T21:32:32.883-04:00 4.3 NETWORK MEDIUM NONE PARTIAL NONE NONE http://nvd.nist.gov 2010-05-17T14:51:00.000-04:00 SECUNIA 39670 XF safari-http-request-information-disclosure(58620) Apple Safari 4.0.5 on Windows sends the "Authorization: Basic" header appropriate for one web site to a different web site named in a Location header received from the first site, which allows remote web servers to obtain sensitive information by logging HTTP requests. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.