WebKit 'history.replaceState' Cross-Origin Information Disclosure Vulnerability

WebKit is prone to a remote information-disclosure vulnerability.

Successful exploits may allow the attacker to gain access to sensitive information. Information obtained may lead to further attacks.

NOTE: This issue was previously covered in BID 41016 (Apple iPhone/iPod touch Prior to iOS 4 Multiple Vulnerabilities) but has been given its own record to better document it.


Privacy Statement
Copyright 2010, SecurityFocus