CVE-2010-0044

NameCVE-2010-0044
DescriptionPubSub in Apple Safari before 4.0.5 does not properly implement use of the Accept Cookies preference to block cookies, which makes it easier for remote web servers to track users by setting a cookie in a (1) RSS or (2) Atom feed.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)
NVD severitymedium (attack range: remote)

Notes

NOT-FOR-US: Apple PubSub
apple's pubsub is rss-oriented and all debian packages with pubsub
components are not; hence this is very likely an issue specifically with
their own code, or their wrapper code around another PubSub library

Search for package or bug name: Reporting problems