Improper Recognition of Block Cookies Setting in Apple Safari Allows Remote Tracking

Improper Recognition of Block Cookies Setting in Apple Safari Allows Remote Tracking

CVE-2011-3242 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The Private Browsing feature in Apple Safari before 5.1.1 on Mac OS X does not properly recognize the Always value of the Block Cookies setting, which makes it easier for remote web servers to track users via a cookie.

Learn more about our Web App Pen Testing.