Vulnerability Details : CVE-2009-2195
Buffer overflow in WebKit in Apple Safari before 4.0.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted floating-point numbers.
Vulnerability category: OverflowExecute codeDenial of service
Exploit prediction scoring system (EPSS) score for CVE-2009-2195
Probability of exploitation activity in the next 30 days: 91.53%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 98 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2009-2195
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Source |
|---|---|---|---|---|---|
|
9.3
|
HIGH | AV:N/AC:M/Au:N/C:C/I:C/A:C |
8.6
|
10.0
|
[email protected] |
CWE ids for CVE-2009-2195
-
The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.Assigned by: [email protected] (Primary)
References for CVE-2009-2195
-
http://lists.apple.com/archives/security-announce/2009/Aug/msg00002.html
Patch;Vendor Advisory
- http://www.vupen.com/english/advisories/2011/0212
- http://www.securitytracker.com/id?1022717
-
http://support.apple.com/kb/HT3733
Patch;Vendor Advisory
- http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html
- http://support.apple.com/kb/HT4225
-
http://www.securityfocus.com/bid/36023
Patch
- http://lists.apple.com/archives/security-announce/2010/Jun/msg00003.html
Products affected by CVE-2009-2195
- cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:1.0:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:1.0:beta:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:1.0:beta2:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:1.1:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:beta2:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:1.2.2:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:1.2.3:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:1.2:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:1.2.1:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:1.2.5:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:1.2.4:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:1.3:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:2.0:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:2.0.1:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:2.0.2:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:2.0_pre:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:2.0.3:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:1.3.1:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:2.0.4_419.3:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:2.0.4:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:3.0.2:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:3.0.1:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:3.0:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:3.0.3:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:3.0.4:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:0.8:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:0.9:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:1.3.2:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:3:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:3.1:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:1.0.3:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:3.1.1:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:3.0.3:522.15.5:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:3.0.4_beta:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:1.1.1:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:2.0.3_417.9.3:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:3.2:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:1.0.0b1:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:1.0.3:85.8.1:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:3.0.0:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:3.1.2:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:1.0.1:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:1.0.0b2:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:1.0.3:85.8:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:3.1.0:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:1.0.2:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:1.1.0:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:2.0.3:417.9:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:1.3.2:312.6:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:2.0.0:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:3.2.1:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:4.0:beta:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:1.0.0:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:1.2.0:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:1.3.0:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:1.3.2:312.5:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:2.0.3:417.9.2:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:2.0.3:417.8:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:3.2.0:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:3.1.0b:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:3.0.1b:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:3.0.1:beta:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:3.0.2b:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:2.0.3:417.9.3:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:3.0.4b:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:3.0.0b:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:3.0.3b:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:3.2.2:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:4.0:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:4beta:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:4.0_beta:528.16:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp
- cpe:2.3:a:apple:safari:4.0.1:*:*:*:*:*:*:*When used together with: Microsoft » Windows VistaWhen used together with: Microsoft » Windows Xp