Vulnerability Details : CVE-2009-1698
Potential exploit
WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not initialize a pointer during handling of a Cascading Style Sheets (CSS) attr function call with a large numerical argument, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document.
Vulnerability category: Memory CorruptionExecute codeDenial of service
Products affected by CVE-2009-1698
- cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:2.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:2.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:2.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:2.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:2.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:2.0.3:417.9:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:2.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:2.0.3:417.9.2:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:2.0.3:417.8:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.1.0b:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.0.1b:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.0.1:beta:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.0.2b:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:2.0.3:417.9.3:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.0.4b:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.0.0b:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.0.3b:*:*:*:*:*:*:*
- cpe:2.3:h:apple:ipod_touch:*:*:*:*:*:*:*:*
- cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
- cpe:2.3:o:apple:iphone_os:2.0.2:*:*:*:*:*:*:*
- cpe:2.3:o:apple:iphone_os:2.0.1:*:*:*:*:*:*:*
- cpe:2.3:o:apple:iphone_os:1.0.2:*:*:*:*:*:*:*
- cpe:2.3:o:apple:iphone_os:2.1:*:*:*:*:*:*:*
- cpe:2.3:o:apple:iphone_os:1.1.2:*:*:*:*:*:*:*
- cpe:2.3:o:apple:iphone_os:1.1.1:*:*:*:*:*:*:*
- cpe:2.3:o:apple:iphone_os:2.0:*:*:*:*:*:*:*
- cpe:2.3:o:apple:iphone_os:1.1.5:*:*:*:*:*:*:*
- cpe:2.3:o:apple:iphone_os:1.0.1:*:*:*:*:*:*:*
- cpe:2.3:o:apple:iphone_os:1.1.4:*:*:*:*:*:*:*
- cpe:2.3:o:apple:iphone_os:1.1.3:*:*:*:*:*:*:*
- cpe:2.3:o:apple:iphone_os:2.2.1:*:*:*:*:*:*:*
- cpe:2.3:o:apple:iphone_os:1.0.0:*:*:*:*:*:*:*
- cpe:2.3:o:apple:iphone_os:2.2:*:*:*:*:*:*:*
- cpe:2.3:o:apple:iphone_os:2.1.1:*:*:*:*:*:*:*
- cpe:2.3:o:apple:iphone_os:2.0.0:*:*:*:*:*:*:*
- cpe:2.3:o:apple:iphone_os:1.1.0:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2009-1698
6.25%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 90 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2009-1698
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
9.3
|
HIGH | AV:N/AC:M/Au:N/C:C/I:C/A:C |
8.6
|
10.0
|
NIST |
CWE ids for CVE-2009-1698
-
The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.Assigned by: nvd@nist.gov (Primary)
References for CVE-2009-1698
-
http://lists.apple.com/archives/security-announce/2009/jun/msg00002.html
Patch;Vendor Advisory
-
https://www.redhat.com/archives/fedora-package-announce/2009-July/msg01196.html
[SECURITY] Fedora 10 Update: kdelibs-4.2.4-6.fc10
-
http://www.ubuntu.com/usn/USN-836-1
USN-836-1: WebKit vulnerabilities | Ubuntu security notices | Ubuntu
-
http://www.ubuntu.com/usn/USN-822-1
USN-822-1: KDE-Libs vulnerabilities | Ubuntu security notices | Ubuntu
-
http://support.apple.com/kb/HT3613
About the security content of Safari 4.0 - Apple SupportPatch;Vendor Advisory
-
http://secunia.com/advisories/36790
About Secunia Research | Flexera
-
http://secunia.com/advisories/43068
Sign in
-
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9484
404 Not Found
-
http://blog.zoller.lu/2009/05/advisory-apple-safari-remote-code.html
Musings on Information Security and Data Privacy: Advisory : Apple Safari remote code execution
-
http://secunia.com/advisories/36062
About Secunia Research | Flexera
-
http://www.vupen.com/english/advisories/2011/0212
Webmail | OVH- OVH
-
http://lists.apple.com/archives/security-announce/2009/Jun/msg00005.html
-
https://www.redhat.com/archives/fedora-package-announce/2009-July/msg01177.html
[SECURITY] Fedora 11 Update: kdelibs-4.2.4-6.fc11
-
http://www.ubuntu.com/usn/USN-857-1
USN-857-1: Qt vulnerabilities | Ubuntu security notices | Ubuntu
-
http://osvdb.org/55006
-
http://secunia.com/advisories/37746
About Secunia Research | Flexera
-
https://www.redhat.com/archives/fedora-package-announce/2009-July/msg01200.html
[SECURITY] Fedora 10 Update: kdelibs3-3.5.10-13.fc10
-
http://secunia.com/advisories/36057
About Secunia Research | Flexera
-
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html
[security-announce] SUSE Security Summary Report: SUSE-SR:2011:002
-
http://www.securityfocus.com/bid/35318
-
http://www.zerodayinitiative.com/advisories/ZDI-09-032/
ZDI-09-032 | Zero Day InitiativePatch
-
http://secunia.com/advisories/35379
About Secunia Research | FlexeraVendor Advisory
-
http://www.vupen.com/english/advisories/2009/1522
Webmail: access your OVH emails on ovhcloud.com | OVHcloudPatch;Vendor Advisory
-
http://www.mandriva.com/security/advisories?name=MDVSA-2009:330
Mandriva
-
http://securitytracker.com/id?1022345
Access DeniedPatch
-
http://www.securityfocus.com/archive/1/504173/100/0/threaded
-
http://www.vupen.com/english/advisories/2009/1621
Webmail: access your OVH emails on ovhcloud.com | OVHcloud
-
https://www.redhat.com/archives/fedora-package-announce/2009-July/msg01199.html
[SECURITY] Fedora 11 Update: kdelibs3-3.5.10-13.fc11
-
http://secunia.com/advisories/35588
About Secunia Research | Flexera
-
http://www.securityfocus.com/archive/1/504295/100/0/threaded
-
http://www.redhat.com/support/errata/RHSA-2009-1128.html
Support
-
http://www.securityfocus.com/bid/35260
Exploit
-
http://support.apple.com/kb/HT3639
About the security content of iOS 3.0 Software Update - Apple Support
-
http://www.debian.org/security/2009/dsa-1950
[SECURITY] [DSA-1950-1] New webkit packages fix several vulnerabilities
Jump to