Apple Safari 1.2.4 does not obey the Content-type field in the HTTP header and renders text as HTML, which allows remote malicious users to inject arbitrary web script or HTML and perform cross-site scripting (XSS) attacks.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple safari 1.2.4 |