CVE-2016-1728 in Safariinfo

Summary

The Cascading Style Sheets (CSS) implementation in Apple iOS before 9.2.1 and Safari before 9.0.3 mishandles the "a:visited button" selector during height processing, which makes it easier for remote attackers to obtain sensitive browser-history information via a crafted web site.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

01/13/2016

Disclosure

02/01/2016

Moderation

VulDB entry created

Entries

VDB-80632 (2)

CPE

ready

CWE

CWE-200 (Confirmed)

CVSS

4.3

EPSS

0.00757

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-1728
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-1728
CVE Details	https://www.cvedetails.com/cve/CVE-2016-1728/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!