Launch Services in Apple Mac OS X 10.4.11 and 10.5.1 does not treat HTML files as unsafe content, which allows attackers to conduct cross-site scripting (XSS) attacks or obtain sensitive information via a crafted HTML file.
Max CVSS
4.3
EPSS Score
0.30%
Published
2007-12-19
Updated
2017-07-29
1 vulnerabilities found