WebKit in Apple iOS before 4 on the iPhone and iPod touch does not enforce the expected boundary restrictions on content display by an IFRAME element, which allows remote attackers to spoof the user interface via a crafted HTML document.
References
Link | Resource |
---|---|
http://lists.apple.com/archives/security-announce/2010//Nov/msg00003.html | Mailing List Vendor Advisory |
http://lists.apple.com/archives/security-announce/2010/Jun/msg00003.html | Mailing List Vendor Advisory |
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html | Mailing List Third Party Advisory |
http://secunia.com/advisories/42314 | Third Party Advisory |
http://secunia.com/advisories/43068 | Third Party Advisory |
http://support.apple.com/kb/HT4225 | Vendor Advisory |
http://support.apple.com/kb/HT4456 | Vendor Advisory |
http://www.securityfocus.com/bid/41016 | Third Party Advisory VDB Entry |
http://www.securityfocus.com/bid/41068 | Third Party Advisory VDB Entry |
http://www.vupen.com/english/advisories/2011/0212 | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: apple
Published: 2010-06-22T20:24:00
Updated: 2010-06-26T09:00:00
Reserved: 2010-05-06T00:00:00
Link: CVE-2010-1757
JSON object: View
NVD Information
Status : Analyzed
Published: 2010-06-22T20:30:01.697
Modified: 2022-08-09T13:46:59.553
Link: CVE-2010-1757
JSON object: View
Redhat Information
No data.
CWE