CVE-2015-1126 Information

Feb 14, 2021 cve

Description

WebKit as used in Apple iOS before 8.3 and Apple Safari before 6.2.5 7.x before 7.1.5 and 8.x before 8.0.5 does not properly handle the userinfo field in FTP URLs which allows remote attackers to trigger incorrect resource access via unspecified vectors.

Reference

http://lists.apple.com/archives/security-announce/2015/Apr/msg00000.html http://lists.apple.com/archives/security-announce/2015/Apr/msg00002.html http://www.securitytracker.com/id/1032047 https://support.apple.com/HT204658 https://support.apple.com/HT204661

Share on: