CVE-2009-1686

Опубликовано: 10 июн. 2009

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 9.3

Описание

WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not properly handle constant (aka const) declarations in a type-conversion operation during JavaScript exception handling, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document.

Релиз	Статус	Примечание
dapper	not-affected	no webkit
devel	not-affected	code not present
hardy	not-affected	no webkit
intrepid	not-affected	code not present
jaunty	not-affected	code not present
karmic	not-affected	code not present
lucid	not-affected	code not present
maverick	not-affected	code not present
natty	not-affected	code not present
upstream	needs-triage

Показывать по

Релиз	Статус	Примечание
dapper	DNE
devel	not-affected	1.1.12-1ubuntu1
hardy	ignored	end of life
intrepid	not-affected	1.0.1-2ubuntu0.1
jaunty	not-affected	1.0.1-4
karmic	not-affected	1.1.12-1ubuntu1
lucid	not-affected	1.1.12-1ubuntu1
maverick	not-affected	1.1.12-1ubuntu1
natty	not-affected	1.1.12-1ubuntu1
upstream	needs-triage

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2009-1686

EPSS

Процентиль: 90%

0.05858

Низкий

9.3 Critical

CVSS2

Связанные уязвимости

CVE-2009-1686

nvd

больше 16 лет назад

CVE-2009-1686

debian

больше 16 лет назад

WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iP ...

GHSA-432c-2w5j-688r

github

почти 4 года назад

EPSS

Процентиль: 90%

0.05858

Низкий

9.3 Critical

CVSS2

CVE-2009-1686

Описание

Пакет qt4-x11

Пакет webkit

Ссылки на источники

Связанные уязвимости