The Download Validation in LaunchServices for Apple Mac OS X 10.4.7 can identify certain HTML as "safe", which could allow malicious users to execute Javascript code in local context when the "Open 'safe' files after downloading" option is enabled in Safari.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple mac os x server 10.4.7 |
||
apple mac os x 10.4.7 |