7.5
CVE-2004-1122
- EPSS 2.34%
- Veröffentlicht 10.01.2005 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:07:03
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Safari 1.x to 1.2.4, and possibly other versions, allows inactive windows to launch dialog boxes, which can allow remote attackers to spoof the dialog boxes from web sites in other windows, aka the "Dialog Box Spoofing Vulnerability," a different vulnerability than CVE-2004-1314.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.34% | 0.814 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://lists.apple.com/archives/security-announce/2004/Dec/msg00000.html
http://secunia.com/multiple_browsers_dialog_box_spoofing_test/
http://secunia.com/advisories/12892
http://secunia.com/secunia_research/2004-10/