Vulnerability Description
Cross-domain vulnerability in Apple Safari for Windows 3.0.1 allows remote attackers to bypass the "same origin policy" and access restricted information from other domains via JavaScript that overwrites the document variable and statically sets the document.domain attribute.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Windows Nt | 3.0.1 |
| Apple | Safari | All versions |
Related Weaknesses (CWE)
References
- http://osvdb.org/38860
- http://www.0x000000.com/?i=371
- http://www.securityfocus.com/bid/24700
- http://osvdb.org/38860
- http://www.0x000000.com/?i=371
- http://www.securityfocus.com/bid/24700
FAQ
What is CVE-2007-3482?
CVE-2007-3482 is a vulnerability with a CVSS score of 7.8 (HIGH). Cross-domain vulnerability in Apple Safari for Windows 3.0.1 allows remote attackers to bypass the "same origin policy" and access restricted information from other domains via JavaScript that overwri...
How severe is CVE-2007-3482?
CVE-2007-3482 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-3482?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Windows Nt, Apple Safari.