Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Download Validation in LaunchServices for Apple Mac OS X 10.4.7 can identify certain HTML as "safe", which could allow attackers to execute Javascript code in local context when the "Open 'safe' files after downloading" option is enabled in Safari.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Apple Mac OS Safari JavaScript代码绕过漏洞
Vulnerability Description
Apple Mac OS X是苹果家族机器所使用的操作系统。 最新的Mac OS X更新修复了多个漏洞,具体如下: 下载验证可能将某些包含有HTML的文件错误的识别为"安全"。如果在Safari中下载了这样的文件且Safari的"下载后打开安全的文件"选项已启用,则就会从本地URI自动打开HTML文档,允许文档中嵌入的JavaScript代码绕过访问限制。
CVSS Information
N/A
Vulnerability Type
N/A