CVE-2008-1007
Published Mar 19, 2008
Last updated 7 years ago
Overview
- Description
- WebCore, as used in Apple Safari before 3.1, does not enforce the frame navigation policy for Java applets, which allows remote attackers to conduct cross-site scripting (XSS) attacks.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 4.3
- Impact score
- 2.9
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:N/I:P/A:N
Weaknesses
- nvd@nist.gov
- CWE-79
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E804E6B0-BF27-48B7-91BB-00EF3E01E402",
"versionEndIncluding": "3.0.4"
},
{
"criteria": "cpe:2.3:a:apple:safari:0.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "09F4ADD0-449B-4DDD-9878-DE86CBD56756"
},
{
"criteria": "cpe:2.3:a:apple:safari:0.9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2E0AECB7-FE62-4664-B3B8-8161DA6DA4BC"
},
{
"criteria": "cpe:2.3:a:apple:safari:1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1A419AE8-F5A2-4E25-9004-AAAB325E201A"
},
{
"criteria": "cpe:2.3:a:apple:safari:1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "857C92E2-6870-409A-9457-75F8C5C7B959"
},
{
"criteria": "cpe:2.3:a:apple:safari:1.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "443FF271-A3AB-4659-80B2-89F771BF5371"
},
{
"criteria": "cpe:2.3:a:apple:safari:1.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4EDD80AB-2A6C-47FF-A1E9-DEB273C6B4E5"
},
{
"criteria": "cpe:2.3:a:apple:safari:1.3.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D9315ADD-5B97-4639-9B59-806EFD7BC247"
},
{
"criteria": "cpe:2.3:a:apple:safari:1.3.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E7DD81AB-27D6-4CB0-BBF0-5710DAD55A3D"
},
{
"criteria": "cpe:2.3:a:apple:safari:2.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9D3889ED-9329-4C84-A173-2553BEAE3EDA"
},
{
"criteria": "cpe:2.3:a:apple:safari:2.0.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "06494FA8-F12A-435A-97A4-F38C58DF43F2"
},
{
"criteria": "cpe:2.3:a:apple:safari:2.0.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DFDCF83E-620C-40FA-9901-5D939E315143"
},
{
"criteria": "cpe:2.3:a:apple:safari:3.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4A33F900-D405-40A8-A0A5-3C80320FF6E9"
},
{
"criteria": "cpe:2.3:a:apple:safari:3.0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8CEB23DE-1A9D-480E-8B8B-9F110A8ABDE6"
},
{
"criteria": "cpe:2.3:a:apple:safari:3.0.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "84E78F43-07BD-4D62-9512-DA738A92BC7B"
},
{
"criteria": "cpe:2.3:a:apple:safari:3.0.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F3180366-2240-467E-8AB9-BEA0430948F1"
}
],
"operator": "OR"
}
]
}
]