Apple Safari Domain Extensions Insecure Cookie Access Vulnerability
BID:30192
Info
Apple Safari Domain Extensions Insecure Cookie Access Vulnerability
| Bugtraq ID: | 30192 |
| Class: | Design Error |
| CVE: |
CVE-2008-3170 |
| Remote: | Yes |
| Local: | No |
| Published: | Jul 12 2008 12:00AM |
| Updated: | Dec 17 2008 08:11PM |
| Credit: | Alex aka kuza55 discovered this issue. |
| Vulnerable: |
Apple Safari 3.1.2 for Windows Apple Safari 3.1.2 Apple Mac OS X Server 10.5.5 Apple Mac OS X Server 10.5.4 Apple Mac OS X Server 10.5.3 Apple Mac OS X Server 10.5.2 Apple Mac OS X Server 10.5.1 Apple Mac OS X Server 10.4.11 Apple Mac OS X Server 10.5 Apple Mac OS X 10.5.5 Apple Mac OS X 10.5.4 Apple Mac OS X 10.5.3 Apple Mac OS X 10.5.2 Apple Mac OS X 10.5.1 Apple Mac OS X 10.4.11 Apple Mac OS X 10.5 |
| Not Vulnerable: |
Apple Mac OS X Server 10.5.6 Apple Mac OS X 10.5.6 |
Discussion
Apple Safari Domain Extensions Insecure Cookie Access Vulnerability
Apple Safari is prone to a vulnerability that allows attackers to set cookies for certain domain extensions.
The browser does not have any security provisions to prevent cookies from being set for extensions with embedded dots. Attackers can leverage this issue to set cookies in a manner that could aid in other web-based attacks.
Safari 3.1.2 is vulnerable; other versions may also be affected.
Apple Safari is prone to a vulnerability that allows attackers to set cookies for certain domain extensions.
The browser does not have any security provisions to prevent cookies from being set for extensions with embedded dots. Attackers can leverage this issue to set cookies in a manner that could aid in other web-based attacks.
Safari 3.1.2 is vulnerable; other versions may also be affected.
Exploit / POC
Apple Safari Domain Extensions Insecure Cookie Access Vulnerability
To exploit this issue, an attacker must entice an unsuspecting user to open a malicious document.
To exploit this issue, an attacker must entice an unsuspecting user to open a malicious document.
Solution / Fix
Apple Safari Domain Extensions Insecure Cookie Access Vulnerability
Solution:
The vendor has released an advisory and updates. Please see the references for more information.
Apple Mac OS X 10.5
Apple Mac OS X Server 10.5
Apple Mac OS X Server 10.5.1
Apple Mac OS X 10.5.1
Apple Mac OS X 10.5.2
Apple Mac OS X Server 10.5.2
Apple Mac OS X 10.5.3
Apple Mac OS X Server 10.5.3
Apple Mac OS X 10.5.4
Apple Mac OS X Server 10.5.4
Apple Mac OS X 10.5.5
Apple Mac OS X Server 10.5.5
Solution:
The vendor has released an advisory and updates. Please see the references for more information.
Apple Mac OS X 10.5
-
Apple MacOSXUpdCombo10.5.6.dmg
http://www.apple.com/support/downloads/
Apple Mac OS X Server 10.5
-
Apple MacOSXServerUpdCombo10.5.6.dmg
http://www.apple.com/support/downloads/
Apple Mac OS X Server 10.5.1
-
Apple MacOSXServerUpdCombo10.5.6.dmg
http://www.apple.com/support/downloads/
Apple Mac OS X 10.5.1
-
Apple MacOSXUpdCombo10.5.6.dmg
http://www.apple.com/support/downloads/
Apple Mac OS X 10.5.2
-
Apple MacOSXUpdCombo10.5.6.dmg
http://www.apple.com/support/downloads/
Apple Mac OS X Server 10.5.2
-
Apple MacOSXServerUpdCombo10.5.6.dmg
http://www.apple.com/support/downloads/
Apple Mac OS X 10.5.3
-
Apple MacOSXUpdCombo10.5.6.dmg
http://www.apple.com/support/downloads/
Apple Mac OS X Server 10.5.3
-
Apple MacOSXServerUpdCombo10.5.6.dmg
http://www.apple.com/support/downloads/
Apple Mac OS X 10.5.4
-
Apple MacOSXUpdCombo10.5.6.dmg
http://www.apple.com/support/downloads/
Apple Mac OS X Server 10.5.4
-
Apple MacOSXServerUpdCombo10.5.6.dmg
http://www.apple.com/support/downloads/
Apple Mac OS X 10.5.5
-
Apple MacOSXUpd10.5.6.dmg
http://www.apple.com/support/downloads/
Apple Mac OS X Server 10.5.5
-
Apple MacOSXServerUpd10.5.6.dmg
http://www.apple.com/support/downloads/
References
Apple Safari Domain Extensions Insecure Cookie Access Vulnerability
References:
References:
- Safari Homepage (Apple)
- Some Random Safari Notes (Alex's Corner)
- Understanding Cookie Security (Alex's Corner)