Lucene search
Ubuntu.comUB:CVE-2009-2797HistorySep 10, 2009 - 12:00 a.m.
CVE-2009-2797
2009-09-1000:00:00
ubuntu.com
ubuntu.com
7
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.005 Low
EPSS
Percentile
75.7%
The WebKit component in Safari in Apple iPhone OS before 3.1, and iPhone OS
before 3.1.1 for iPod touch, does not remove usernames and passwords from
URLs sent in Referer headers, which allows remote attackers to obtain
sensitive information by reading Referer logs on a web server.
Bugs
Related
prion
prion
Information disclosure
2009-09-10 21:30:00
cve
cve
CVE-2009-2797
2009-09-10 21:30:00
debiancve
debiancve
CVE-2009-2797
2009-09-10 21:30:00
nessus
nessus
Apple iOS 3.x < 3.1 Multiple Vulnerabilities
2009-09-10 00:00:00
Ubuntu 9.10 / 10.04 LTS / 10.10 : webkit vulnerabilities (USN-1006-1)
2010-10-20 00:00:00
Mandriva Linux Security Advisory : webkit (MDVSA-2011:039)
2011-03-03 00:00:00
openvas
openvas
Ubuntu Update for webkit vulnerabilities USN-1006-1
2010-10-22 00:00:00
Mandriva Update for webkit MDVSA-2011:039 (webkit)
2011-03-07 00:00:00
Mandriva Update for webkit MDVSA-2011:039 (webkit)
2011-03-07 00:00:00
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.005 Low
EPSS
Percentile
75.7%
Related for UB:CVE-2009-2797