Race condition in Apple Safari 3 Beta prior to 3.0.2 on Mac OS X, Windows XP, Windows Vista, and iPhone prior to 1.0.1, allows remote malicious users to bypass the JavaScript security model and modify pages outside of the security domain and conduct cross-site scripting (XSS) attacks via vectors related to page updating and HTTP redirects.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple iphone_os |
||
apple safari 3.0.1 |
||
apple safari 3.0 |