CVE-2004-1122 — Apple Safari vulnerability

4 documents2 sources

Severity

7.5HIGHNVD

EPSS

0.8%

top 26.15%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple Safari

Timeline

PublishedJan 10

Latest updateApr 29

Description

Safari 1.x to 1.2.4, and possibly other versions, allows inactive windows to launch dialog boxes, which can allow remote attackers to spoof the dialog boxes from web sites in other windows, aka the "Dialog Box Spoofing Vulnerability," a different vulnerability than CVE-2004-1314.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

▶NVDapple/safari7 versions+6

🔴Vulnerability Details

GHSA

GHSA-fjjm-8r2x-qmqx: Safari 1↗2022-04-29

▶

GHSA

GHSA-23rg-j4mh-2pmr: Safari 1↗2022-04-29

▶