Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2009-0153

Опубликовано: 13 мая 2009
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 4.3

Описание

International Components for Unicode (ICU) 4.0, 3.6, and other 3.x versions, as used in Apple Mac OS X 10.5 before 10.5.7, iPhone OS 1.0 through 2.2.1, iPhone OS for iPod touch 1.1 through 2.2.1, Fedora 9 and 10, and possibly other operating systems, does not properly handle invalid byte sequences during Unicode conversion, which might allow remote attackers to conduct cross-site scripting (XSS) attacks.

РелизСтатусПримечание
dapper

ignored

end of life
devel

not-affected

4.0.1-2
hardy

released

3.8-6ubuntu0.2
intrepid

released

3.8.1-2ubuntu0.2
jaunty

released

3.8.1-3ubuntu1.1
upstream

released

4.0.1-1

Показывать по

Ссылки на источники

EPSS

Процентиль: 91%
0.06394
Низкий

4.3 Medium

CVSS2

Связанные уязвимости

redhat логотип

CVE-2009-0153

CVSS3: 6.1
redhat
около 18 лет назад

International Components for Unicode (ICU) 4.0, 3.6, and other 3.x versions, as used in Apple Mac OS X 10.5 before 10.5.7, iPhone OS 1.0 through 2.2.1, iPhone OS for iPod touch 1.1 through 2.2.1, Fedora 9 and 10, and possibly other operating systems, does not properly handle invalid byte sequences during Unicode conversion, which might allow remote attackers to conduct cross-site scripting (XSS) attacks.

nvd логотип

CVE-2009-0153

nvd
около 16 лет назад

International Components for Unicode (ICU) 4.0, 3.6, and other 3.x versions, as used in Apple Mac OS X 10.5 before 10.5.7, iPhone OS 1.0 through 2.2.1, iPhone OS for iPod touch 1.1 through 2.2.1, Fedora 9 and 10, and possibly other operating systems, does not properly handle invalid byte sequences during Unicode conversion, which might allow remote attackers to conduct cross-site scripting (XSS) attacks.

debian логотип

CVE-2009-0153

debian
около 16 лет назад

International Components for Unicode (ICU) 4.0, 3.6, and other 3.x ver ...

github логотип

GHSA-hc72-qh6j-jvwc

github
около 3 лет назад

International Components for Unicode (ICU) 4.0, 3.6, and other 3.x versions, as used in Apple Mac OS X 10.5 before 10.5.7, iPhone OS 1.0 through 2.2.1, iPhone OS for iPod touch 1.1 through 2.2.1, Fedora 9 and 10, and possibly other operating systems, does not properly handle invalid byte sequences during Unicode conversion, which might allow remote attackers to conduct cross-site scripting (XSS) attacks.

oracle-oval логотип

ELSA-2009-1122

oracle-oval
почти 16 лет назад

ELSA-2009-1122: icu security update (MODERATE)

EPSS

Процентиль: 91%
0.06394
Низкий

4.3 Medium

CVSS2

Уязвимость CVE-2009-0153