Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2009-1690

Опубликовано: 10 июн. 2009
Источник: nvd
CVSS2: 9.3
EPSS Средний

Описание

Use-after-free vulnerability in WebKit, as used in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, iPhone OS for iPod touch 1.1 through 2.2.1, Google Chrome 1.0.154.53, and possibly other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) by setting an unspecified property of an HTML tag that causes child elements to be freed and later accessed when an HTML error occurs, related to "recursion in certain DOM event handlers."

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:apple:safari:*:*:mac:*:*:*:*:*
Версия до 4.0_beta (включая)
cpe:2.3:a:apple:safari:0.8:*:mac:*:*:*:*:*
cpe:2.3:a:apple:safari:0.9:*:mac:*:*:*:*:*
cpe:2.3:a:apple:safari:1.0:*:mac:*:*:*:*:*
cpe:2.3:a:apple:safari:1.0.3:*:mac:*:*:*:*:*
cpe:2.3:a:apple:safari:1.1:*:mac:*:*:*:*:*
cpe:2.3:a:apple:safari:1.2:*:mac:*:*:*:*:*
cpe:2.3:a:apple:safari:1.3:*:mac:*:*:*:*:*
cpe:2.3:a:apple:safari:1.3.1:*:mac:*:*:*:*:*
cpe:2.3:a:apple:safari:1.3.2:*:mac:*:*:*:*:*
cpe:2.3:a:apple:safari:2.0:*:mac:*:*:*:*:*
cpe:2.3:a:apple:safari:2.0.2:*:mac:*:*:*:*:*
cpe:2.3:a:apple:safari:2.0.4:*:mac:*:*:*:*:*
cpe:2.3:a:apple:safari:3.0:*:mac:*:*:*:*:*
cpe:2.3:a:apple:safari:3.0.2:-:mac:*:*:*:*:*
cpe:2.3:a:apple:safari:3.0.3:*:mac:*:*:*:*:*
cpe:2.3:a:apple:safari:3.0.4:*:mac:*:*:*:*:*
cpe:2.3:a:apple:safari:3.1:*:mac:*:*:*:*:*
cpe:2.3:a:apple:safari:3.1.1:*:mac:*:*:*:*:*
cpe:2.3:a:apple:safari:3.1.2:*:mac:*:*:*:*:*
cpe:2.3:a:apple:safari:3.2.1:*:mac:*:*:*:*:*
cpe:2.3:a:apple:safari:3.2.3:*:mac:*:*:*:*:*
Конфигурация 2

Одно из

cpe:2.3:a:apple:safari:*:*:windows:*:*:*:*:*
Версия до 3.2.3 (включая)
cpe:2.3:a:apple:safari:3.0:*:windows:*:*:*:*:*
cpe:2.3:a:apple:safari:3.0.1:*:windows:*:*:*:*:*
cpe:2.3:a:apple:safari:3.0.2:*:windows:*:*:*:*:*
cpe:2.3:a:apple:safari:3.0.3:*:windows:*:*:*:*:*
cpe:2.3:a:apple:safari:3.0.4:*:windows:*:*:*:*:*
cpe:2.3:a:apple:safari:3.1:*:windows:*:*:*:*:*
cpe:2.3:a:apple:safari:3.1.1:*:windows:*:*:*:*:*
cpe:2.3:a:apple:safari:3.1.2:*:windows:*:*:*:*:*
cpe:2.3:a:apple:safari:3.2:-:windows:*:*:*:*:*
cpe:2.3:a:apple:safari:3.2.1:*:windows:*:*:*:*:*
cpe:2.3:a:apple:safari:3.2.2:*:windows:*:*:*:*:*
Конфигурация 3

Одно из

cpe:2.3:o:apple:iphone_os:1.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.0.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.0.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.0.1:-:iphone:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.0.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.0.2:-:iphone:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.1.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.1.0:-:iphone:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.1.0:-:ipodtouch:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.1.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.1.1:-:iphone:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.1.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.1.2:-:iphone:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.1.2:-:ipodtouch:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.1.3:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.1.3:-:iphone:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.1.3:-:ipodtouch:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.1.4:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.1.4:-:iphone:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.1.4:-:ipodtouch:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.1.5:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.1.5:-:iphone:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.1.5:-:ipodtouch:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:2.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:2.0.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:2.0.0:-:iphone:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:2.0.0:-:ipodtouch:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:2.0.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:2.0.1:-:iphone:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:2.0.1:-:ipodtouch:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:2.0.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:2.0.2:-:iphone:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:2.0.2:-:ipodtouch:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:2.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:2.1:-:iphone:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:2.1:-:ipodtouch:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:2.2:-:iphone:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:2.2:-:ipodtouch:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:2.2.1:-:iphone:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:2.2.1:-:ipodtouch:*:*:*:*:*
Конфигурация 4
cpe:2.3:a:google:chrome:1.0.154.53:*:*:*:*:*:*:*

EPSS

Процентиль: 94%
0.1222
Средний

9.3 Critical

CVSS2

Дефекты

CWE-399

Связанные уязвимости

ubuntu логотип

CVE-2009-1690

ubuntu
около 16 лет назад

Use-after-free vulnerability in WebKit, as used in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, iPhone OS for iPod touch 1.1 through 2.2.1, Google Chrome 1.0.154.53, and possibly other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) by setting an unspecified property of an HTML tag that causes child elements to be freed and later accessed when an HTML error occurs, related to "recursion in certain DOM event handlers."

redhat логотип

CVE-2009-1690

redhat
около 16 лет назад

Use-after-free vulnerability in WebKit, as used in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, iPhone OS for iPod touch 1.1 through 2.2.1, Google Chrome 1.0.154.53, and possibly other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) by setting an unspecified property of an HTML tag that causes child elements to be freed and later accessed when an HTML error occurs, related to "recursion in certain DOM event handlers."

debian логотип

CVE-2009-1690

debian
около 16 лет назад

Use-after-free vulnerability in WebKit, as used in Apple Safari before ...

github логотип

GHSA-2fpc-5vfr-7xv5

github
больше 3 лет назад

Use-after-free vulnerability in WebKit, as used in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, iPhone OS for iPod touch 1.1 through 2.2.1, Google Chrome 1.0.154.53, and possibly other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) by setting an unspecified property of an HTML tag that causes child elements to be freed and later accessed when an HTML error occurs, related to "recursion in certain DOM event handlers."

oracle-oval логотип

ELSA-2009-1127

oracle-oval
около 16 лет назад

ELSA-2009-1127: kdelibs security update (CRITICAL)

EPSS

Процентиль: 94%
0.1222
Средний

9.3 Critical

CVSS2

Дефекты

CWE-399