WebKit Cross-Origin Stylesheet Request Information Disclosure Vulnerability
WebKit in Apple Safari before 4.0.5 does not properly validate the cross-origin loading of stylesheets which allows remote attackers to obtain sensitive information via a crafted HTML document. NOTE: this might overlap CVE-2010-0651.
- Microsoft Windows Vista
- Microsoft Windows XP
- Microsoft Windows 7
- Apple Safari