Apple Safari Beta 3.0.1 for Windows allows remote attackers to execute arbitrary commands via shell metacharacters in a URI in the SRC of an IFRAME, as demonstrated using a gopher URI.
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2007-06-12 22:30
Updated : 2024-02-28 11:01
NVD link : CVE-2007-3186
Mitre link : CVE-2007-3186
CVE.ORG link : CVE-2007-3186
JSON object : View
Products Affected
apple
- safari
CWE
CWE-264
Permissions, Privileges, and Access Controls