Unrated severityNVD Advisory· Published Jun 21, 2007· Updated Jun 16, 2026
CVE-2007-2398
CVE-2007-2398
Description
Apple Safari 3.0.1 beta (522.12.12) on Windows allows remote attackers to modify the window title and address bar while filling the main window with arbitrary content by setting the location bar and using setTimeout() to create an event that modifies the window content, which could facilitate phishing attacks.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:apple:safari:3.0.1:*:windows:*:*:*:*:*+ 1 more
- cpe:2.3:a:apple:safari:3.0.1:*:windows:*:*:*:*:*
- (no CPE)range: =3.0.1 beta (522.12.12)
Patches
Vulnerability mechanics
References
12- archives.neohapsis.com/archives/fulldisclosure/2007-06/0311.htmlnvd
- lists.apple.com/archives/Security-announce/2007/Jun/msg00004.htmlnvd
- lists.apple.com/archives/security-announce/2008/Apr/msg00001.htmlnvd
- osvdb.org/38862nvd
- support.apple.com/kb/HT1467nvd
- www.securityfocus.com/archive/1/471452/100/0/threadednvd
- www.securityfocus.com/archive/1/471454/100/0/threadednvd
- www.securityfocus.com/bid/24484nvd
- www.securitytracker.com/idnvd
- www.vupen.com/english/advisories/2007/2316nvd
- www.vupen.com/english/advisories/2008/0979/referencesnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/35050nvd
News mentions
0No linked articles in our index yet.