8.5
CVE-2007-3514
- EPSS 1.33%
- Veröffentlicht 03.07.2007 10:30:00
- Zuletzt bearbeitet 16.06.2026 22:42:12
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Cross-domain vulnerability in Apple Safari for Windows 3.0.2 allows remote attackers to bypass the Same Origin Policy and access restricted information from other domains via JavaScript that overwrites the document variable and statically sets the document.domain attribute to a file:// location, a different vector than CVE-2007-3482.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.33% | 0.673 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 8.5 | 10 | 7.8 |
AV:N/AC:L/Au:N/C:C/I:P/A:N
|
http://www.0x000000.com/?i=371
http://osvdb.org/38861