Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Launch Services in Apple Mac OS X 10.4.11 and 10.5.1 does not treat HTML files as unsafe content, which allows attackers to conduct cross-site scripting (XSS) attacks or obtain sensitive information via a crafted HTML file.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Apple Mac OS X Launch Services 跨站脚本攻击漏洞
Vulnerability Description
Mac OS X是苹果家族机器所使用的操作系统。 Apple 2007-009安全更新修复了Mac OS X中的多个安全漏洞,远程或本地攻击者可能利用这些漏洞造成多种威胁。启动服务没有将HTML文件处理为可能的不安全内容,如果用户受骗打开了恶意的HTML文件的话,攻击者就可以导致泄露敏感信息或执行跨站脚本。
CVSS Information
N/A
Vulnerability Type
N/A