New Search

Apple Safari Prior to 4.0.5 Configuration Bypass Weakness

oval:org.mitre.oval:def:7051

PubSub in Apple Safari before 4.0.5 does not properly implement use of the Accept Cookies preference to block cookies which makes it easier for remote web servers to track users by setting a cookie in a (1) RSS or (2) Atom feed.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows XP
  • Microsoft Windows Vista
  • Microsoft Windows 7
Class:
vulnerability
Reference(s):
  • CVE-2010-0044
Product(s):
  • Apple Safari