CVE-2012-0640

Safari < 5.1.4 - Unauthorized Cookie Tracking via WebKit Cookie Blocking Bypass

Title source: llm
STIX 2.1

Description

WebKit in Apple Safari before 5.1.4 does not properly implement "From third parties and advertisers" cookie blocking, which makes it easier for remote web servers to track users via a cookie.

References (3)

Core 3
Core References
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/48377
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1026785
Mailing List vendor-advisory x_refsource_apple
http://lists.apple.com/archives/security-announce/2012/Mar/msg00003.html

Scores

EPSS 0.0106
EPSS Percentile 60.6%

Details

CWE
CWE-200
Status published
Products (35)
apple/safari 1.0 (3 CPE variants)
apple/safari 1.0.0
apple/safari 1.0.0b1
apple/safari 1.0.0b2
apple/safari 1.0.1
apple/safari 1.0.2
apple/safari 1.0.3 (3 CPE variants)
apple/safari 1.0b1
apple/safari 1.1
apple/safari 1.1.0
... and 25 more
Published Mar 12, 2012
Tracked Since Feb 18, 2026