6.8

CVE-2007-3759

Safari in Apple iPhone 1.1.1, when requested to disable Javascript, does not disable it until Safari is restarted, which might leave Safari open to attacks that the user does not expect.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
AppleSafari
   AppleIphone Version1.0
   AppleiPhone OS Version1.0.1
   AppleiPhone OS Version1.0.2
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.65% 0.735
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 6.8 8.6 6.4
AV:N/AC:M/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://docs.info.apple.com/article.html?artnum=306586
http://lists.apple.com/archives/security-announce/2007/Sep/msg00001.html
Patch
http://secunia.com/advisories/26983
http://securitytracker.com/id?1018752
http://osvdb.org/38532
http://www.securityfocus.com/bid/25853
https://exchange.xforce.ibmcloud.com/vulnerabilities/36858