Apple : Security Vulnerabilities, CVEs, Published In July 2012 (Information Leak)
WebKit in Apple Safari before 6.0 does not properly handle drag-and-drop events, which allows user-assisted remote attackers to obtain sensitive information about full pathnames via a crafted web site.
Max CVSS
4.3
EPSS Score
0.18%
Published
2012-07-25
Updated
2012-11-30
WebKit in Apple Safari before 6.0 accesses uninitialized memory locations during the rendering of SVG images, which allows remote attackers to obtain sensitive information from process memory via a crafted web site.
Max CVSS
4.3
EPSS Score
0.36%
Published
2012-07-25
Updated
2013-03-22
2 vulnerabilities found