Description: A vulnerability was reported in Apple Safari in the processing of cookies. A remote user may be able to bypass the path restrictions specified by a cookie's originator. Several other browsers are also affected. Corsaire reported that a remote user (server) can employ a combination of path traversal and encoding techniques to bypass cookie path restrictions in the target user's browser. |