CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:M/Au:N/C:P/I:N/A:N
AI Score
Confidence
Low
EPSS
Percentile
5.1%
Apple Safari before 3.2 does not properly prevent caching of form data for form fields that have autocomplete disabled, which allows local users to obtain sensitive information by reading the browser’s page cache.
lists.apple.com/archives/security-announce//2008/Nov/msg00001.html
lists.apple.com/archives/security-announce/2008/Nov/msg00002.html
secunia.com/advisories/32706
secunia.com/advisories/32756
support.apple.com/kb/HT3298
support.apple.com/kb/HT3318
www.securityfocus.com/bid/32291
www.securitytracker.com/id?1021226
www.vupen.com/english/advisories/2008/3232