Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0720

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2004-0720
Last Modified 05 Sep 2008 04:39:13
Published 27 Jul 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0720

Summary

Safari 1.2.2 does not properly prevent a frame in one domain from injecting content into a frame that belongs to another domain, which facilitates web site spoofing and other attacks, aka the frame injection vulnerability.

Vulnerable Systems

Application

  • Apple Safari 1.2.2


References

XF - http-frame-spoof(1598)

MISC - http://secunia.com/multiple_browsers_frame_injection_vulnerability_test/

SECUNIA - 11978


Last Updated: 27 May 2016 10:38:43