CVE-2015-1155
23Vexday Risk Score
Corrija em breve. Ela tem exploit funcional público.
ssvc Attendepss 11%
da publicação à arma0 dias
Publicada no NVD8 de mai.
metasploit16 de jan.
probabilidade de exploração
11%top 5% das CVEs
exploração observada
nãonenhuma fonte reporta
The history implementation in WebKit, as used in Apple Safari before 6.2.6, 7.x before 7.1.6, and 8.x before 8.0.6, allows remote attackers to bypass the Same Origin Policy and read arbitrary files via a crafted web site.
Produtos afetados
n/a · n/aReferências
http://lists.apple.com/archives/security-announce/2015/Jun/msg00001.htmlhttp://lists.apple.com/archives/security-announce/2015/May/msg00000.htmlhttp://lists.opensuse.org/opensuse-updates/2016-03/msg00054.htmlhttp://lists.opensuse.org/opensuse-updates/2016-03/msg00132.htmlhttps://support.apple.com/HT204826http://support.apple.com/kb/HT204941http://www.securityfocus.com/bid/74527http://www.securitytracker.com/id/1032270http://www.ubuntu.com/usn/USN-2937-1