Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2009-1727
HistoryAug 06, 2009 - 4:30 p.m.

CVE-2009-1727

2009-08-0616:30:00
[email protected]
web.nvd.nist.gov
32
4
cve-2009-1727
coretypes
apple
mac os x
vulnerability
security
nvd
javascript
content-type
safari

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7 High

AI Score

Confidence

Low

0.023 Low

EPSS

Percentile

89.8%

JSON

Incomplete blacklist vulnerability in CoreTypes in Apple Mac OS X 10.5 before 10.5.8 makes it easier for user-assisted remote attackers to execute arbitrary JavaScript via a web page that offers a download with a Content-Type value that is not on the list of possibly unsafe content types for Safari.

Affected configurations

NVD
Node
applemac_os_xMatch10.5.6
OR
applemac_os_xMatch10.5
OR
applemac_os_xMatch10.5.0
OR
applemac_os_xMatch10.5.1
OR
applemac_os_xMatch10.5.2
OR
applemac_os_xMatch10.5.3
OR
applemac_os_xMatch10.5.4
OR
applemac_os_xMatch10.5.5
OR
applemac_os_xMatch10.5.6
OR
applemac_os_xMatch10.5.7
OR
applemac_os_x_serverMatch10.5
OR
applemac_os_x_serverMatch10.5.0
OR
applemac_os_x_serverMatch10.5.1
OR
applemac_os_x_serverMatch10.5.2
OR
applemac_os_x_serverMatch10.5.3
OR
applemac_os_x_serverMatch10.5.4
OR
applemac_os_x_serverMatch10.5.5
OR
applemac_os_x_serverMatch10.5.6
OR
applemac_os_x_serverMatch10.5.7

Social References

More

Related

prion 1
nvd 1
cvelist 1
securityvulns 2
openvas 2
nessus 2
seebug 1
prion
prion
Design/Logic Flaw
2009-08-06 16:30:00
nvd
nvd
CVE-2009-1727
2009-08-06 16:30:00
cvelist
cvelist
CVE-2009-1727
2009-08-06 16:00:00
securityvulns
securityvulns
Apple Mac OS X multiple security vulnerabilities
2009-08-07 00:00:00
About the security content of Security Update 2009-003 / Mac OS X v10.5.8
2009-08-07 00:00:00
openvas
openvas
Mac OS X 10.5.8 Update / Mac OS X Security Update 2009-003
2010-05-12 00:00:00
Mac OS X 10.5.8 Update / Mac OS X Security Update 2009-003
2010-05-12 00:00:00
nessus
nessus
Mac OS X 10.5.x < 10.5.8 Multiple Vulnerabilities
2009-08-05 00:00:00
Mac OS X 10.5 < 10.5.8 Multiple Vulnerabilities
2009-08-06 00:00:00
seebug
seebug
Apple Mac OS X 2009-003修补多个安全漏洞
2009-08-06 00:00:00

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7 High

AI Score

Confidence

Low

0.023 Low

EPSS

Percentile

89.8%

JSON
Related for CVE-2009-1727
prion1nvd1cvelist1securityvulns2openvas2nessus2seebug1