Code injection

2009-06-1018:00:00

PRIOn knowledge base

www.prio-n.com

7 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.018 Low

EPSS

Percentile

87.8%

JSON

WebKit in Apple Safari before 4.0 does not prevent remote loading of local Java applets, which allows remote attackers to execute arbitrary code, gain privileges, or obtain sensitive information via an APPLET or OBJECT element.

CPENameOperatorVersion
safarieq1.1 mac
safarieq1.3.1 mac
safarieq3.2.3 mac
safarieq2.0.2 mac
safarieq3.1 mac
safarieq3.1.2 mac
safarieq3.0 mac
safarieq0.8 mac
safarieq2.0 mac
safarieq3.0.4 mac

Name	Operator	Version
safari	eq	1.1 mac
safari	eq	1.3.1 mac
safari	eq	3.2.3 mac
safari	eq	2.0.2 mac
safari	eq	3.1 mac
safari	eq	3.1.2 mac
safari	eq	3.0 mac
safari	eq	0.8 mac
safari	eq	2.0 mac
safari	eq	3.0.4 mac