Lucene search

K

PRIOn knowledge basePRION:CVE-2009-1687

HistoryJun 10, 2009 - 2:30 p.m.

Null pointer dereference

2009-06-1014:30:00

PRIOn knowledge base

www.prio-n.com

3

8 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.027 Low

EPSS

Percentile

90.3%

The JavaScript garbage collector in WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not properly handle allocation failures, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document that triggers write access to an “offset of a NULL pointer.”

CPENameOperatorVersion
safarieq1.1 mac
safarieq1.3.1 mac
safarieq3.2.3 mac
safarieq2.0.2 mac
safarieq3.1 mac
safarieq3.1.2 mac
safarieq3.0 mac
safarieq0.8 mac
safarieq2.0 mac
safarieq3.0.4 mac

Rows per page:

1-10 of 341

References

lists.apple.com/archives/security-announce/2009/jun/msg00002.html

lists.apple.com/archives/security-announce/2009/Jun/msg00005.html

lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html

osvdb.org/54985

secunia.com/advisories/35379

secunia.com/advisories/36057

secunia.com/advisories/36062

secunia.com/advisories/36790

secunia.com/advisories/37746

secunia.com/advisories/43068

securitytracker.com/id?1022345

support.apple.com/kb/HT3613

support.apple.com/kb/HT3639

www.debian.org/security/2009/dsa-1950

www.mandriva.com/security/advisories?name=MDVSA-2009:330

www.securityfocus.com/bid/35260

www.securityfocus.com/bid/35309

www.ubuntu.com/usn/USN-822-1

www.ubuntu.com/usn/USN-836-1

www.ubuntu.com/usn/USN-857-1

www.vupen.com/english/advisories/2009/1522

www.vupen.com/english/advisories/2009/1621

www.vupen.com/english/advisories/2011/0212

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10260

www.redhat.com/archives/fedora-package-announce/2009-July/msg01177.html

www.redhat.com/archives/fedora-package-announce/2009-July/msg01196.html

www.redhat.com/archives/fedora-package-announce/2009-July/msg01199.html

www.redhat.com/archives/fedora-package-announce/2009-July/msg01200.html

8 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.027 Low

EPSS

Percentile

90.3%

Related for PRION:CVE-2009-1687

veracode1 debiancve1 cve1 ubuntucve1 openvas41 nessus23 oraclelinux1 debian5 centos1 osv4 redhat1 ubuntu3 fedora10 seebug1