Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
WebKit in Apple iOS before 9 mishandles "Content-Disposition: attachment" HTTP headers, which might allow man-in-the-middle attackers to obtain sensitive information via unspecified vectors.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Apple iOS WebKit 信息泄露漏洞
Vulnerability Description
Apple iOS是美国苹果(Apple)公司为移动设备所开发的一套操作系统。WebKit是KDE、苹果(Apple)、谷歌(Google)等公司共同开发的一套开源Web浏览器引擎,目前被Apple Safari及Google Chrome等浏览器使用。 Apple iOS 8.4.1及之前版本的WebKit中存在安全漏洞,该漏洞源于程序没有正确处理‘Content-Disposition:attachment’HTTP头。攻击者可利用该漏洞实施中间人攻击,获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A