CVE-2012-3697
7.1
Vector
AV:N/AC:M/Au:N/C:C/I:N/A:N
Exploitability: 8.6 / Impact: 6.9
Source: NVD
Description
WebKit in Apple Safari before 6.0 does not properly handle file: URLs, which allows remote attackers to bypass intended sandbox restrictions and read arbitrary files by leveraging a WebProcess compromise.
Affected (102)
Related CWEs
References (4)
Source: product-security@apple.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Timeline
No history available yet.