CVE-2007-3759 : Safari in Apple iPhone 1.1.1, when requested to disable Javascript, does not disable it until Safari is restarted, which

Safari in Apple iPhone 1.1.1, when requested to disable Javascript, does not disable it until Safari is restarted, which might leave Safari open to attacks that the user does not expect.

Published 2007-09-27 22:17:00

Updated 2022-08-09 13:46:59

Source MITRE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2007-3759

Probability of exploitation activity in the next 30 days: 0.91%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 82 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2007-3759

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
6.8	MEDIUM	AV:N/AC:M/Au:N/C:P/I:P/A:P	8.6	6.4	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial

CWE ids for CVE-2007-3759

CWE-16

Assigned by: nvd@nist.gov (Primary)

References for CVE-2007-3759

Products affected by CVE-2007-3759

Apple » Safari
cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Iphone » Version: 1.0
When used together with: Apple » Iphone Os » Version: 1.0.1
When used together with: Apple » Iphone Os » Version: 1.0.2

Vulnerability Details : CVE-2007-3759

Exploit prediction scoring system (EPSS) score for CVE-2007-3759

CVSS scores for CVE-2007-3759

CWE ids for CVE-2007-3759

References for CVE-2007-3759

Products affected by CVE-2007-3759