CVE-2012-3689

Published: Jul 25, 2012Modified: Apr 29, 2026

5.8

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:N

Exploitability: 8.6 / Impact: 4.9

Source: NVD

Description

WebKit in Apple Safari before 6.0 does not properly handle drag-and-drop events, which allows user-assisted remote attackers to bypass the Same Origin Policy via a crafted web site.

Affected (102)

Products: Apple: Safari

Apple

1 product

Safari

Configuration A

102 vulnerable

Vulnerable Software	Affected Versions
Apple Safari	Up to 5.1.7
Apple Safari	Version 1.0.0
Apple Safari	Version 1.0.0b1
Apple Safari	Version 1.0.0b2
Apple Safari	Version 1.0.1
Apple Safari	Version 1.0.2
Apple Safari	Version 1.0.3
Apple Safari	Version 1.0.3 85.8.1
Apple Safari	Version 1.0.3 85.8
Apple Safari	Version 1.0
Apple Safari	Version 1.0 beta2
Apple Safari	Version 1.0 beta
Apple Safari	Version 1.0b1
Apple Safari	Version 1.1.0
Apple Safari	Version 1.1.1
Apple Safari	Version 1.1
Apple Safari	Version 1.2.0
Apple Safari	Version 1.2.1
Apple Safari	Version 1.2.2
Apple Safari	Version 1.2.3
Apple Safari	Version 1.2.4
Apple Safari	Version 1.2.5
Apple Safari	Version 1.2
Apple Safari	Version 1.3.0
Apple Safari	Version 1.3.1
Apple Safari	Version 1.3.2
Apple Safari	Version 1.3.2 312.5
Apple Safari	Version 1.3.2 312.6
Apple Safari	Version 1.3
Apple Safari	Version 2.0.0
Apple Safari	Version 2.0.1
Apple Safari	Version 2.0.2
Apple Safari	Version 2.0.3
Apple Safari	Version 2.0.3 417.8
Apple Safari	Version 2.0.3 417.9.2
Apple Safari	Version 2.0.3 417.9.3
Apple Safari	Version 2.0.3 417.9
Apple Safari	Version 2.0.4
Apple Safari	Version 2.0.4
Apple Safari	Version 2.0
Apple Safari	Version 2
Apple Safari	Version 3.0.0
Apple Safari	Version 3.0.0
Apple Safari	Version 3.0.0b
Apple Safari	Version 3.0.0b
Apple Safari	Version 3.0.1
Apple Safari	Version 3.0.1
Apple Safari	Version 3.0.1 beta
Apple Safari	Version 3.0.1b
Apple Safari	Version 3.0.1b
Apple Safari	Version 3.0.2
Apple Safari	Version 3.0.2
Apple Safari	Version 3.0.2b
Apple Safari	Version 3.0.2b
Apple Safari	Version 3.0.3
Apple Safari	Version 3.0.3
Apple Safari	Version 3.0.3b
Apple Safari	Version 3.0.3b
Apple Safari	Version 3.0.4
Apple Safari	Version 3.0.4
Apple Safari	Version 3.0.4b
Apple Safari	Version 3.0.4b
Apple Safari	Version 3.0
Apple Safari	Version 3.1.0
Apple Safari	Version 3.1.0
Apple Safari	Version 3.1.0b
Apple Safari	Version 3.1.0b
Apple Safari	Version 3.1.1
Apple Safari	Version 3.1.1b
Apple Safari	Version 3.1.2
Apple Safari	Version 3.1.2b
Apple Safari	Version 3.2.0
Apple Safari	Version 3.2.0b
Apple Safari	Version 3.2.1
Apple Safari	Version 3.2.1b
Apple Safari	Version 3.2.2
Apple Safari	Version 3.2.2b
Apple Safari	Version 3
Apple Safari	Version 4.0.0b
Apple Safari	Version 4.0.1
Apple Safari	Version 4.0.2
Apple Safari	Version 4.0.3
Apple Safari	Version 4.0.4
Apple Safari	Version 4.0.5
Apple Safari	Version 4.0
Apple Safari	Version 4.0 beta
Apple Safari	Version 4.1.1
Apple Safari	Version 4.1.2
Apple Safari	Version 4.1
Apple Safari	Version 5.0.1
Apple Safari	Version 5.0.2
Apple Safari	Version 5.0.4
Apple Safari	Version 5.0.5
Apple Safari	Version 5.0.6
Apple Safari	Version 5.0
Apple Safari	Version 5.1.1
Apple Safari	Version 5.1.2
Apple Safari	Version 5.1.3
Apple Safari	Version 5.1.4
Apple Safari	Version 5.1.5
Apple Safari	Version 5.1.6
Apple Safari	Version 5.1