Home CVE Database CVE-2016-1785

CVE-2016-1785

Description

The Page Loading implementation in WebKit in Apple iOS before 9.3 and Safari before 9.1 mishandles character encoding during access to cached data, which allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site.

Priority: MEDIUM
CVSS v3: 6.5
Publish Date: Mar 23, 2016
Related ID: --
CVSS v2: Medium
Modified Date: Mar 25, 2016

Find out more about CVE-2016-1785 from the MITRE-CVE dictionary and NIST NVD


Products Affected

Login may be required to access defects or downloads.

Related Products

Product Name Status Defect Fixed Downloads
Linux 7 SCP Not Vulnerable -- -- --
Linux 7 CGP Not Vulnerable -- -- --

Comments

webkit

Live chat
Online