Vulnerability Name: | CVE-2016-1728 (CCN-109750) | ||||||||||||||||||||
Assigned: | 2016-01-19 | ||||||||||||||||||||
Published: | 2016-01-19 | ||||||||||||||||||||
Updated: | 2018-10-09 | ||||||||||||||||||||
Summary: | The Cascading Style Sheets (CSS) implementation in Apple iOS before 9.2.1 and Safari before 9.0.3 mishandles the "a:visited button" selector during height processing, which makes it easier for remote attackers to obtain sensitive browser-history information via a crafted web site. | ||||||||||||||||||||
CVSS v3 Severity: | 4.3 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N) 3.8 Low (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C)
3.8 Low (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C)
| ||||||||||||||||||||
CVSS v2 Severity: | 4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N)
| ||||||||||||||||||||
Vulnerability Type: | CWE-200 | ||||||||||||||||||||
Vulnerability Consequences: | Obtain Information | ||||||||||||||||||||
References: | Source: MITRE Type: CNA CVE-2016-1728 Source: APPLE Type: Vendor Advisory APPLE-SA-2016-01-19-1 Source: APPLE Type: Vendor Advisory APPLE-SA-2016-01-19-3 Source: MISC Type: UNKNOWN http://packetstormsecurity.com/files/136227/WebKitGTK-Memory-Corruption-Denial-Of-Service.html Source: BUGTRAQ Type: UNKNOWN 20160311 WebKitGTK+ Security Advisory WSA-2016-0002 Source: BID Type: UNKNOWN 81263 Source: CCN Type: BID-81263 WebKit Multiple Security Vulnerabilities Source: SECTRACK Type: UNKNOWN 1034737 Source: XF Type: UNKNOWN apple-safari-cve20161728-weak-security(109750) Source: GENTOO Type: UNKNOWN GLSA-201706-15 Source: CCN Type: Apple Web site About the security content of Safari 9.0.3 Source: CONFIRM Type: Vendor Advisory https://support.apple.com/HT205730 Source: CONFIRM Type: Vendor Advisory https://support.apple.com/HT205732 | ||||||||||||||||||||
Vulnerable Configuration: | Configuration 1: Configuration CCN 1: ![]() | ||||||||||||||||||||
Oval Definitions | |||||||||||||||||||||
| |||||||||||||||||||||
BACK |