International Components for Unicode (ICU) 4.0, 3.6, and other 3.x versions, as used in Apple Mac OS X 10.5 prior to 10.5.7, iPhone OS 1.0 up to and including 2.2.1, iPhone OS for iPod touch 1.1 up to and including 2.2.1, Fedora 9 and 10, and possibly other operating systems, does not properly handle invalid byte sequences during Unicode conversion, which might allow remote malicious users to conduct cross-site scripting (XSS) attacks.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple mac os x 10.5.2 |
||
apple mac os x 10.5.4 |
||
apple mac os x 10.5.5 |
||
apple mac os x 10.5.6 |
||
apple mac os x server 10.5.4 |
||
apple mac os x server 10.5.0 |
||
apple mac os x server 10.5.2 |
||
apple mac os x server 10.5.6 |
||
apple mac os x 10.5.0 |
||
apple mac os x server 10.5.5 |
||
apple mac os x 10.5.1 |
||
apple mac os x 10.5.3 |
||
apple mac os x server 10.5.1 |
||
apple mac os x server 10.5.3 |