Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Apple Safari allows web sites to set cookies for country-specific top-level domains, such as co.uk and com.au, which could allow remote attackers to perform a session fixation attack and hijack a user's HTTP session, aka "Cross-Site Cooking," a related issue to CVE-2004-0746, CVE-2004-0866, and CVE-2004-0867.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Apple Safari域扩展不安全Cookie访问漏洞
Vulnerability Description
Safari是苹果家族机器操作系统中默认捆绑的WEB浏览器。 Safari允许站点为某些特定国家的二级域名(如co.uk、com.au)设置cookies,如果攻击者在cookie中设置了类似于", arbitrary_name=arbitrary_value"的值的话,Safari在解析Set-Cookie头时就会导致会话修复攻击,允许攻击者劫持用户的HTTP会话执行网络钓鱼等攻击。
CVSS Information
N/A
Vulnerability Type
N/A