CVE-2009-1698

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 10-06-2009 08:00

Last modified: - 02-09-2022 03:42

Total changes: - 3

Description

WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not initialize a pointer during handling of a Cascading Style Sheets (CSS) attr function call with a large numerical argument, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document.

Common Vulnerability Scoring System (CVSS)

AV:N/AC:M/Au:N/C:C/I:C/A:C

Low

Attack complexity

Network

Attack vector

High

Availability

High

Confidentiality

High

Integrity

Privileges required

Scope

User interaction

9.3

Base score

8.6

10.0

Exploitability score

Impact score

Verification logic

Reference

http://www.zerodayinitiative.com/advisories/ZDI-09-032/
35260-Exploit
35379-Vendor Advisory
http://support.apple.com/kb/HT3613
ADV-2009-1522-Patch, Vendor Advisory
APPLE-SA-2009-06-08-1-Patch, Vendor Advisory
1022345-Patch
55006-
35318-
http://blog.zoller.lu/2009/05/advisory-apple-safari-remote-code.html
ADV-2009-1621-
http://support.apple.com/kb/HT3639
APPLE-SA-2009-06-17-1-
RHSA-2009:1128-
35588-
FEDORA-2009-8020-
FEDORA-2009-8039-
FEDORA-2009-8046-
36057-
FEDORA-2009-8049-
36062-
USN-822-1-
DSA-1950-
37746-
MDVSA-2009:330-
USN-857-1-
USN-836-1-
36790-
ADV-2011-0212-
SUSE-SR:2011:002-
43068-
oval:org.mitre.oval:def:9484-
20090614 [TZO-37-2009] Apple Safari <v4 Remote code execution-
20090608 ZDI-09-032: Apple WebKit attr() Invalid Attribute Memory Corruption Vulnerability-

Keywords

CVE-2009-1698

Common vulnerabilities & exposures (CVE)

Description

Common Vulnerability Scoring System (CVSS)

Verification logic

Reference

NVD

CVE-2009-1698

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures