The plug-in in QuickTime in Apple Mac OS X before 10.6.7 allows remote attackers to bypass the Same Origin Policy and obtain potentially sensitive video data via vectors involving a cross-site redirect.
Metrics
Affected Vendors & Products
References
History
Thu, 20 Mar 2025 20:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Weaknesses | CWE-200 | NVD-CWE-noinfo |
| CPEs | cpe:2.3:o:apple:mac_os_x:10.6.1:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x:10.6.2:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x:10.6.3:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x:10.6.4:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x:10.6.5:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x:10.6.6:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x_server:10.6.0:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x_server:10.6.1:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x_server:10.6.2:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x_server:10.6.3:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x_server:10.6.4:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x_server:10.6.5:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x_server:10.6.6:*:*:*:*:*:*:* |
cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x_server:*:*:*:*:*:*:*:* |
MITRE
Status: PUBLISHED
Assigner: apple
Published: 2011-03-23T01:00:00
Updated: 2024-08-06T21:43:15.433Z
Reserved: 2010-12-23T00:00:00
Link: CVE-2011-0187
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2011-03-23T02:00:05.457
Modified: 2025-03-20T19:42:23.150
Link: CVE-2011-0187
Redhat
No data.