CVE-2008-1005

CVSS 2.1 - LOW
Description

WebCore, as used in Apple Safari before 3.1, does not properly mask the password field when reverse conversion is used with the Kotoeri input method, which allows physically proximate attackers to read the password.

Affected Products
16
Vendor Product Version
apple safari 0.8
apple safari 0.9
apple safari 1.0
apple safari 1.1
apple safari 1.2
apple safari 1.3
apple safari 1.3.1
apple safari 1.3.2
apple safari 2.0
apple safari 2.0.2
apple safari 2.0.4
apple safari 3.0
apple safari 3.0.1
apple safari 3.0.2
apple safari 3.0.3
apple safari 3.0.4
References
http://docs.info.apple.com/article.html?artnum=307...
http://lists.apple.com/archives/security-announce/...
http://secunia.com/advisories/29393
http://www.securityfocus.com/bid/28290
http://www.securityfocus.com/bid/28326
http://www.securitytracker.com/id?1019656
http://www.us-cert.gov/cas/techalerts/TA08-079A.ht...
http://www.vupen.com/english/advisories/2008/0920/...
https://exchange.xforce.ibmcloud.com/vulnerabiliti...
http://docs.info.apple.com/article.html?artnum=307...
http://lists.apple.com/archives/security-announce/...
http://secunia.com/advisories/29393
http://www.securityfocus.com/bid/28290
http://www.securityfocus.com/bid/28326
http://www.securitytracker.com/id?1019656
http://www.us-cert.gov/cas/techalerts/TA08-079A.ht...
http://www.vupen.com/english/advisories/2008/0920/...
https://exchange.xforce.ibmcloud.com/vulnerabiliti...
Weakness Types
CWE-200
CVE Information
CVE ID:
CVE-2008-1005
Published:
2008-03-19
Modified:
2026-04-23
CVSS Score:
2.1
Severity:
LOW
Vector:
AV:L/AC:L/Au:N/C:P/I:N/A:N
Affected Vendors
apple
Quick Actions
View on NVD Find Similar CVEs
CVSS Severity Scale
0.0 - 3.9 LOW
4.0 - 6.9 MEDIUM
7.0 - 8.9 HIGH
9.0 - 10.0 CRITICAL