Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2009-1686
HistoryJun 10, 2009 - 2:30 p.m.

CVE-2009-1686

2009-06-1014:30:00
CWE-20
[email protected]
web.nvd.nist.gov
30
cve-2009-1686
webkit
apple safari
javascript
remote code execution
denial of service
memory corruption

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8 High

AI Score

Confidence

High

0.022 Low

EPSS

Percentile

89.4%

JSON

WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not properly handle constant (aka const) declarations in a type-conversion operation during JavaScript exception handling, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document.

Affected configurations

NVD
Node
applesafariRange4.0_beta-mac
OR
applesafariMatch0.8-mac
OR
applesafariMatch0.9-mac
OR
applesafariMatch1.0-mac
OR
applesafariMatch1.0.3-mac
OR
applesafariMatch1.1-mac
OR
applesafariMatch1.2-mac
OR
applesafariMatch1.3-mac
OR
applesafariMatch1.3.1-mac
OR
applesafariMatch1.3.2-mac
OR
applesafariMatch2.0-mac
OR
applesafariMatch2.0.2-mac
OR
applesafariMatch2.0.4-mac
OR
applesafariMatch3.0-mac
OR
applesafariMatch3.0.2-mac
OR
applesafariMatch3.0.3-mac
OR
applesafariMatch3.0.4-mac
OR
applesafariMatch3.1-mac
OR
applesafariMatch3.1.1-mac
OR
applesafariMatch3.1.2-mac
OR
applesafariMatch3.2.3-mac
Node
applesafariRange3.2.3-windows
OR
applesafariMatch3.0-windows
OR
applesafariMatch3.0.1-windows
OR
applesafariMatch3.0.2-windows
OR
applesafariMatch3.0.3-windows
OR
applesafariMatch3.0.4-windows
OR
applesafariMatch3.1-windows
OR
applesafariMatch3.1.1-windows
OR
applesafariMatch3.1.2-windows
OR
applesafariMatch3.2-windows
OR
applesafariMatch3.2.1-mac
OR
applesafariMatch3.2.1-windows
OR
applesafariMatch3.2.2-windows

Related

prion 1
debiancve 1
ubuntucve 1
cvelist 1
nvd 1
openvas 2
seebug 1
nessus 4
prion
prion
Design/Logic Flaw
2009-06-10 14:30:00
debiancve
debiancve
CVE-2009-1686
2009-06-10 14:30:00
ubuntucve
ubuntucve
CVE-2009-1686
2009-06-10 00:00:00
cvelist
cvelist
CVE-2009-1686
2009-06-10 14:00:00
nvd
nvd
CVE-2009-1686
2009-06-10 14:30:00
openvas
openvas
Apple Safari Multiple Vulnerabilities - 02 - (Jun 2009) - Windows
2009-06-16 00:00:00
Apple Safari Multiple Vulnerabilities June-09 (Windows) - II
2009-06-16 00:00:00
seebug
seebug
Apple Safari 4.0多个安全漏洞
2009-06-11 00:00:00
nessus
nessus
Mac OS X : Apple Safari < 4.0
2009-06-09 00:00:00
Safari < 4.0 Multiple Vulnerabilities
2009-06-09 00:00:00
openSUSE Security Update : libwebkit (openSUSE-SU-2011:0024-1)
2014-06-13 00:00:00

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8 High

AI Score

Confidence

High

0.022 Low

EPSS

Percentile

89.4%

JSON
Related for CVE-2009-1686
prion1debiancve1ubuntucve1cvelist1nvd1openvas2seebug1nessus4