CVE-2010-1757

 

Published at: - 22-06-2010 10:30

Last modified: - 09-08-2022 03:46

Total changes: - 2

Description

WebKit in Apple iOS before 4 on the iPhone and iPod touch does not enforce the expected boundary restrictions on content display by an IFRAME element, which allows remote attackers to spoof the user interface via a crafted HTML document.

Common Vulnerability Scoring System (CVSS)

AV:N/AC:L/Au:N/C:N/I:P/A:P

 

Verification logic

 

Reference

• http://support.apple.com/kb/HT4225
• APPLE-SA-2010-06-21-1-Mailing List, Vendor Advisory
• 41016-Third Party Advisory, VDB Entry
• 41068-Third Party Advisory, VDB Entry
• APPLE-SA-2010-11-22-1-Mailing List, Vendor Advisory
• http://support.apple.com/kb/HT4456
• 42314-Third Party Advisory
• 43068-Third Party Advisory
• SUSE-SR:2011:002-Mailing List, Third Party Advisory
• ADV-2011-0212-Third Party Advisory

 

Keywords

NVD

 

CVE-2010-1757

 

CVE

 

Common vulnerabilities & exposures

 

CVSS

 

Common vulnerability scoring system

 

Security

 

Vulnerabilities

 

Exposures