Lucene search
Ubuntu.comUB:CVE-2009-1689HistoryJun 10, 2009 - 12:00 a.m.
CVE-2009-1689
2009-06-1000:00:00
ubuntu.com
ubuntu.com
15
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.003 Low
EPSS
Percentile
69.9%
Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari before
4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through
2.2.1 allows remote attackers to inject arbitrary web script or HTML via
vectors involving submission of a form to the about:blank URL, leading to
security-context replacement.
Bugs
Notes
| Author | Note |
|---|---|
| jdstrand | webkit is a fork of khtml from kdelibs. kdelibs5 is farther from it, while qt4-x11 attempts to unify khtml and webkit |
| mdeslaur | code doesn’t seem present in kde4libs same patch as CVE-2009-1688 |
Related
cve
cve
CVE-2009-1689
2009-06-10 14:30:00
CVE-2009-1688
2009-06-10 14:30:00
debiancve
debiancve
CVE-2009-1689
2009-06-10 14:30:00
CVE-2009-1688
2009-06-10 14:30:00
prion
prion
Cross site scripting
2009-06-10 14:30:00
Cross site scripting
2009-06-10 14:30:00
ubuntucve
ubuntucve
CVE-2009-1688
2009-06-10 00:00:00
CVE-2009-1691
2009-06-10 00:00:00
openvas
openvas
Apple Safari Multiple Vulnerabilities June-09 (Windows) - II
2009-06-16 00:00:00
Apple Safari Multiple Vulnerabilities - 02 - (Jun 2009) - Windows
2009-06-16 00:00:00
seebug
seebug
Apple Safari 4.0多个安全漏洞
2009-06-11 00:00:00
nessus
nessus
Mac OS X : Apple Safari < 4.0
2009-06-09 00:00:00
Safari < 4.0 Multiple Vulnerabilities
2009-06-09 00:00:00
openSUSE Security Update : libwebkit (openSUSE-SU-2011:0024-1)
2014-06-13 00:00:00
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.003 Low
EPSS
Percentile
69.9%
Related for UB:CVE-2009-1689