QwikSec

Security Database

CVE

CWE

Training

CVE-2005-2272

Published: Jul 13, 2005

Modified: Aug 7, 2024

PUBLISHED

Description

Safari version 2.0 (412) does not clearly associate a Javascript dialog box with the web page that generated it, which allows remote attackers to spoof a dialog box from a trusted site and facilitates phishing attacks, aka the "Dialog Origin Spoofing Vulnerability."

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_VUPEN

vdb-entry

x_refsource_OSVDB

vdb-entry

x_refsource_SECTRACK

APPLE-SA-2005-11-29

vendor-advisory

x_refsource_APPLE

third-party-advisory

x_refsource_SECUNIA

mozilla-javascript-dialog-box-spoofing(21070)

vdb-entry

x_refsource_XF

http://secunia.com/multiple_browsers_dialog_origin_vulnerability_test/

x_refsource_MISC

http://secunia.com/secunia_research/2005-12/advisory/

x_refsource_MISC

vdb-entry

x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.