Lucene search
Ubuntu.comUB:CVE-2009-2200HistoryAug 12, 2009 - 12:00 a.m.
CVE-2009-2200
2009-08-1200:00:00
ubuntu.com
ubuntu.com
4
7.1 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:C/I:N/A:N
0.004 Low
EPSS
Percentile
74.9%
WebKit in Apple Safari before 4.0.3 does not properly restrict the URL
scheme of the pluginspage attribute of an EMBED element, which allows
user-assisted remote attackers to launch arbitrary file: URLs and obtain
sensitive information via a crafted HTML document.
Notes
| Author | Note |
|---|---|
| mdeslaur | appears to be mac/win specific |
Related
cve
cve
CVE-2009-2200
2009-08-12 19:30:00
prion
prion
Hardcoded credentials
2009-08-12 19:30:00
debiancve
debiancve
CVE-2009-2200
2009-08-12 19:30:00
cvelist
cvelist
CVE-2009-2200
2009-08-12 19:00:00
nvd
nvd
CVE-2009-2200
2009-08-12 19:30:00
nessus
nessus
Mac OS X : Apple Safari < 4.0.3
2009-08-11 00:00:00
Safari < 4.0.3 Multiple Vulnerabilities
2009-08-11 00:00:00
Safari < 4.0.3 Multiple Vulnerabilities
2009-08-11 00:00:00
openvas
openvas
Apple Safari Multiple Vulnerabilities (Aug 2009)
2009-08-19 00:00:00
Apple Safari Multiple Vulnerabilities - Aug09
2009-08-19 00:00:00
7.1 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:C/I:N/A:N
0.004 Low
EPSS
Percentile
74.9%
Related for UB:CVE-2009-2200