The host is installed wit Apple Safari before 5.0.4 and is prone to cross domain information disclosure vulnerability. A flaw is present in the application which fails to properly enforce the same-origin policy. Successful exploitation allows remote attacker to disclose sensitive information.