{ "schema_version": "1.4.0", "id": "GHSA-85vp-6795-ghg7", "modified": "2022-05-01T18:26:04Z", "published": "2022-05-01T18:26:04Z", "aliases": [ "CVE-2007-4671" ], "details": "Unspecified vulnerability in Safari in Apple iPhone 1.1.1, and Safari 3 before Beta Update 3.0.4 on Windows and Mac OS X 10.4 through 10.4.10, allows remote attackers to \"alter or access\" HTTPS content via an HTTP session with a crafted web page that causes Javascript to be applied to HTTPS pages from the same domain.", "severity": [], "affected": [], "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-4671" }, { "type": "WEB", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36862" }, { "type": "WEB", "url": "http://docs.info.apple.com/article.html?artnum=306586" }, { "type": "WEB", "url": "http://docs.info.apple.com/article.html?artnum=307041" }, { "type": "WEB", "url": "http://lists.apple.com/archives/Security-announce/2007/Nov/msg00003.html" }, { "type": "WEB", "url": "http://lists.apple.com/archives/security-announce/2007/Sep/msg00001.html" }, { "type": "WEB", "url": "http://secunia.com/advisories/26983" }, { "type": "WEB", "url": "http://secunia.com/advisories/27643" }, { "type": "WEB", "url": "http://securitytracker.com/id?1018752" }, { "type": "WEB", "url": "http://www.securityfocus.com/bid/25852" }, { "type": "WEB", "url": "http://www.securityfocus.com/bid/26444" }, { "type": "WEB", "url": "http://www.us-cert.gov/cas/techalerts/TA07-319A.html" }, { "type": "WEB", "url": "http://www.vupen.com/english/advisories/2007/3287" }, { "type": "WEB", "url": "http://www.vupen.com/english/advisories/2007/3868" } ], "database_specific": { "cwe_ids": [ "CWE-20" ], "severity": "MODERATE", "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2007-09-27T22:17:00Z" } }