CVE-2010-1940 Information

Description

Apple Safari 4.0.5 on Windows sends the \Authorization: Basic\ header appropriate for one web site to a different web site named in a Location header received from the first site which allows remote web servers to obtain sensitive information by logging HTTP requests. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Reference

http://secunia.com/advisories/39670 https://exchange.xforce.ibmcloud.com/vulnerabilities/58620