NVD

Id
56812  
Name
CVE-2007-4692  
Description
The tabbed browsing feature in Apple Safari 3 before Beta Update 3.0.4 on Windows, and Mac OS X 10.4 through 10.4.10, allows remote attackers to spoof HTTP authentication for other sites and possibly conduct phishing attacks by causing an authentication sheet to be displayed for a tab that is not active, which makes it appear as if it is associated with the active tab.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-07  
Published
2007-11-14  
Modified Date
2011-06-13  
Seq
2007-4692  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
289744 56812 CVE-2007-4692 http://docs.info.apple.com/article.html?artnum=307041  View
289745 56812 CVE-2007-4692 APPLE-SA-2007-11-14  View
289746 56812 CVE-2007-4692 APPLE-SA-2007-11-14  View
289747 56812 CVE-2007-4692 26444  View
289748 56812 CVE-2007-4692 26447  View
289749 56812 CVE-2007-4692 TA07-319A  View
289750 56812 CVE-2007-4692 ADV-2007-3868  View
289751 56812 CVE-2007-4692 safari-tabbed-information-disclosure(38460)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
52282 JVNDB-2007-000972 Apple Safari のアクティブでないタブの認証シートの取り扱いに関する問題 Apple Safari には、アクティブではないタブで HTTP 認証された場合、アクティブなタブの HTTP 認証であるかのように認証シートが表示される問題が存在します。 CVE-2007-4692 28047 CVE-2007-4692 56812 4.3 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-000972.html 2007-11-14 2007-12-06 View