2.6

CVE-2005-2272

Exploit
Safari version 2.0 (412) does not clearly associate a Javascript dialog box with the web page that generated it, which allows remote attackers to spoof a dialog box from a trusted site and facilitates phishing attacks, aka the "Dialog Origin Spoofing Vulnerability."
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
AppleSafari Version2.0
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.85% 0.763
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 2.6 4.9 2.9
AV:N/AC:H/Au:N/C:N/I:P/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://docs.info.apple.com/article.html?artnum=302847
http://secunia.com/advisories/17813
http://www.vupen.com/english/advisories/2005/2659
http://secunia.com/multiple_browsers_dialog_origin_vulnerability_test/
Exploit
http://secunia.com/advisories/15474
http://secunia.com/secunia_research/2005-12/advisory/
Vendor Advisory
Exploit
http://securitytracker.com/id?1015294
http://www.osvdb.org/17397
http://www.securityfocus.com/bid/14011
https://exchange.xforce.ibmcloud.com/vulnerabilities/21070