Unrated severityNVD Advisory· Published Jun 12, 2007· Updated Jun 16, 2026
CVE-2007-3186
CVE-2007-3186
Description
Apple Safari Beta 3.0.1 for Windows allows remote attackers to execute arbitrary commands via shell metacharacters in a URI in the SRC of an IFRAME, as demonstrated using a gopher URI.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
9cpe:2.3:a:apple:safari:2.0:*:*:*:*:*:*:*+ 8 more
- cpe:2.3:a:apple:safari:2.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:2.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:2.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:2.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:2.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.0.1:*:windows:*:*:*:*:*
- cpe:2.3:a:apple:safari:*:*:windows:*:*:*:*:*
- (no CPE)range: = Beta 3.0.1 for Windows
Patches
Vulnerability mechanics
References
10- larholm.com/2007/06/12/safari-for-windows-0day-exploit-in-2-hoursnvd
- larholm.com/2007/06/14/safari-301-released/nvd
- lists.apple.com/archives/security-announce/2007/Jun/msg00000.htmlnvd
- lists.grok.org.uk/pipermail/full-disclosure/2007-June/063926.htmlnvd
- osvdb.org/38542nvd
- www.securityfocus.com/archive/1/471176/100/0/threadednvd
- www.securityfocus.com/bid/24434nvd
- www.securitytracker.com/idnvd
- www.vupen.com/english/advisories/2007/2192nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/34824nvd
News mentions
0No linked articles in our index yet.