Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2009-1701
HistoryJun 10, 2009 - 12:00 a.m.

CVE-2009-1701

2009-06-1000:00:00
ubuntu.com
ubuntu.com
7

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.029 Low

EPSS

Percentile

90.8%

JSON

Use-after-free vulnerability in the JavaScript DOM implementation in WebKit
in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for
iPod touch 1.1 through 2.2.1 allows remote attackers to execute arbitrary
code or cause a denial of service (application crash) by destroying a
document.body element that has an unspecified XML container with elements
that support the dir attribute.

Bugs

Notes

Author Note
jdstrand webkit is a fork of khtml from kdelibs. kdelibs5 is farther from it, while qt4-x11 attempts to unify khtml and webkit
mdeslaur code does not seem present in kde4libs webkit code is different in hardy, need to check reproducer as of 2009-09-18, not fixed in upstream qt:4.5 tree

Related

zdi 1
cve 1
cvelist 1
debiancve 1
prion 1
securityvulns 2
openvas 2
seebug 1
nessus 4
zdi
zdi
Apple WebKit dir Attribute Freeing Dangling Object Pointer Vulnerability
2009-06-08 00:00:00
cve
cve
CVE-2009-1701
2009-06-10 18:00:00
cvelist
cvelist
CVE-2009-1701
2009-06-10 17:37:00
debiancve
debiancve
CVE-2009-1701
2009-06-10 18:00:00
prion
prion
Design/Logic Flaw
2009-06-10 18:00:00
securityvulns
securityvulns
ZDI-09-033: Apple WebKit dir Attribute Freeing Dangling Object Pointer Vulnerability
2009-06-09 00:00:00
WebKit / Apple Safari multiple security vulnerabilities
2009-06-23 00:00:00
openvas
openvas
Apple Safari Multiple Vulnerabilities June-09 (Windows) - I
2009-06-16 00:00:00
Apple Safari Multiple Vulnerabilities - 01 - (Jun 2009) - Windows
2009-06-16 00:00:00
seebug
seebug
Apple Safari 4.0多个安全漏洞
2009-06-11 00:00:00
nessus
nessus
Mac OS X : Apple Safari < 4.0
2009-06-09 00:00:00
Safari < 4.0 Multiple Vulnerabilities
2009-06-09 00:00:00
openSUSE Security Update : libwebkit (openSUSE-SU-2011:0024-1)
2011-05-05 00:00:00

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.029 Low

EPSS

Percentile

90.8%

JSON
Related for UB:CVE-2009-1701
zdi1cve1cvelist1debiancve1prion1securityvulns2openvas2seebug1nessus4