The XSLT implementation in WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not properly handle redirects, which allows remote attackers to read XML content from arbitrary web pages via a crafted document.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2009-06-10T17:37:00
Updated: 2009-06-13T09:00:00
Reserved: 2009-05-20T00:00:00
Link: CVE-2009-1700
JSON object: View
NVD Information
Status : Analyzed
Published: 2009-06-10T18:00:00.547
Modified: 2022-08-09T13:48:59.180
Link: CVE-2009-1700
JSON object: View
Redhat Information
No data.
CWE