CVE-2007-3759

Published: Sep 27, 2007Modified: Apr 23, 2026

6.8

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability: 8.6 / Impact: 6.4

Source: NVD

Description

Safari in Apple iPhone 1.1.1, when requested to disable Javascript, does not disable it until Safari is restarted, which might leave Safari open to attacks that the user does not expect.

Affected (1)

Products: Apple: Safari

Apple

1 product

Safari

Configuration A

1 vulnerable · 3 platform

Vulnerable Software	Affected Versions
Apple Safari	All versions

Running on/with	Platform Versions
Apple Iphone	Version 1.0
Apple Iphone Os	Version 1.0.1
Apple Iphone Os	Version 1.0.2

Related CWEs

CWE-16

References (14)

http://docs.info.apple.com/article.html?artnum=306586

Source: cve@mitre.org

http://lists.apple.com/archives/security-announce/2007/Sep/msg00001.html

Source: cve@mitre.org

Patch

http://osvdb.org/38532

Source: cve@mitre.org

http://secunia.com/advisories/26983

Source: cve@mitre.org

http://securitytracker.com/id?1018752

Source: cve@mitre.org

http://www.securityfocus.com/bid/25853

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/36858

Source: cve@mitre.org

http://docs.info.apple.com/article.html?artnum=306586