WebKit User Interface Cross Domain Spoofing Vulnerability

WebKit is prone to a cross-domain spoofing vulnerability.

An attacker can exploit this vulnerability to bypass the same-origin policy and obtain potentially sensitive information, or to launch other attacks against sites.

NOTE: This issue was previously covered in BID 41016 (Apple iPhone/iPod touch Prior to iOS 4 Multiple Vulnerabilities) but has been given its own record to better document it.


Privacy Statement
Copyright 2010, SecurityFocus