CVE-2009-1692

 

Published at: - 19-06-2009 06:30

Last modified: - 02-09-2022 03:42

Total changes: - 3

Description

WebKit before r41741, as used in Apple iPhone OS 1.0 through 2.2.1, iPhone OS for iPod touch 1.1 through 2.2.1, Safari, and other software, allows remote attackers to cause a denial of service (memory consumption or device reset) via a web page containing an HTMLSelectElement object with a large length attribute, related to the length property of a Select object.

Common Vulnerability Scoring System (CVSS)

AV:N/AC:M/Au:N/C:N/I:N/A:C

 

Verification logic

 

Reference

• http://support.apple.com/kb/HT3639
• APPLE-SA-2009-06-17-1-Vendor Advisory
• ADV-2009-1621-
• 35414-
• 55242-
• 35446-
• https://bugs.webkit.org/show_bug.cgi?id=23319
• http://www.g-sec.lu/one-bug-to-rule-them-all.html
• DSA-1950-
• 37746-
• 43068-
• SUSE-SR:2011:002-
• ADV-2011-0212-
• 36977-
• http://kb.palm.com/wps/portal/kb/na/pre/p100eww/sprint/solutions/article/50607_en.html#121
• 9160-
• 20090716 Re[2]: [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari,Opera, Chrome,Seamonkey,iPhone,iPod,Wii,PS3....-
• 20090715 Re: [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari,Opera, Chrome,Seamonkey,iPhone,iPod,Wii,PS3....-
• 20090715 Re:[GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari,Opera, Chrome,Seamonkey,iPhone,iPod,Wii,PS3....-
• 20090715 [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari,Opera, Chrome,Seamonkey,iPhone,iPod,Wii,PS3....-

 

Keywords

NVD

 

CVE-2009-1692

 

CVE

 

Common vulnerabilities & exposures

 

CVSS

 

Common vulnerability scoring system

 

Security

 

Vulnerabilities

 

Exposures