← back
CVE-2004-1314

CVE-2004-1314

EPSS 2.4%
Safari 1.x allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window whose name is known but resides in a different domain, as demonstrated using a pop-up window on a trusted web site, aka the "window injection" vulnerability, a different vulnerability than CVE-2004-1122.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://lists.apple.com/archives/security-announce/2005/Jan/msg00001.htmlhttp://secunia.com/advisories/13252/http://secunia.com/multiple_browsers_window_injection_vulnerability_test/http://secunia.com/secunia_research/2004-13/advisory/https://exchange.xforce.ibmcloud.com/vulnerabilities/18397