Vulnerability Description
Safari in Mac OS X before 10.3.5, after sending form data using the POST method, may re-send the data to a GET method URL if that URL is redirected after the POST data and the user uses the forward or backward buttons, which may cause an information leak.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | Mac Os X | 10.2 |
| Apple | Mac Os X Server | 10.2 |
References
- http://lists.apple.com/mhonarc/security-announce/msg00056.html
- http://www.kb.cert.org/vuls/id/128414US Government Resource
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16944
- http://lists.apple.com/mhonarc/security-announce/msg00056.html
- http://www.kb.cert.org/vuls/id/128414US Government Resource
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16944
FAQ
What is CVE-2004-0743?
CVE-2004-0743 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Safari in Mac OS X before 10.3.5, after sending form data using the POST method, may re-send the data to a GET method URL if that URL is redirected after the POST data and the user uses the forward or...
How severe is CVE-2004-0743?
CVE-2004-0743 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-0743?
Check the references section above for vendor advisories and patch information. Affected products include: Apple Mac Os X, Apple Mac Os X Server.