Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-1122

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2004-1122
Last Modified 10 Sep 2008 03:29:11
Published 10 Jan 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-1122

Summary

Safari 1.x to 1.2.4, and possibly other versions, allows inactive windows to launch dialog boxes, which can allow remote attackers to spoof the dialog boxes from web sites in other windows, aka the "Dialog Box Spoofing Vulnerability," a different vulnerability than CVE-2004-1314.

Vulnerable Systems

Application

  • Apple Safari 1.2.3


References

MISC - http://secunia.com/secunia_research/2004-10/

MISC - http://secunia.com/multiple_browsers_dialog_box_spoofing_test/

SECUNIA - 12892

APPLE - APPLE-SA-2004-12-02


Last Updated: 27 May 2016 10:38:54