CVE-2009-2200

Опубликовано: 12 авг. 2009

Источник: ubuntu

Приоритет: low

EPSS Низкий

CVSS2: 7.1

Описание

WebKit in Apple Safari before 4.0.3 does not properly restrict the URL scheme of the pluginspage attribute of an EMBED element, which allows user-assisted remote attackers to launch arbitrary file: URLs and obtain sensitive information via a crafted HTML document.

Релиз	Статус	Примечание
dapper	DNE
devel	ignored
hardy	ignored	end of life, was needs-triage
intrepid	ignored	end of life, was needs-triage
jaunty	ignored	end of life, was needs-triage
upstream	ignored

Показывать по

Релиз	Статус	Примечание
dapper	ignored	end of life
devel	ignored
hardy	ignored	end of life
intrepid	ignored	end of life, was needs-triage
jaunty	ignored	end of life, was needs-triage
upstream	ignored

Показывать по

Релиз	Статус	Примечание
dapper	ignored	end of life, was needs-triage
devel	ignored
hardy	ignored	end of life
intrepid	ignored	end of life, was needs-triage
jaunty	ignored	end of life, was needs-triage
upstream	ignored

Показывать по

Релиз	Статус	Примечание
dapper	DNE
devel	ignored
hardy	ignored	end of life, was needs-triage
intrepid	ignored	end of life, was needs-triage
jaunty	ignored	end of life, was needs-triage
upstream	ignored

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2009-2200

EPSS

Процентиль: 61%

0.00417

Низкий

7.1 High

CVSS2

Связанные уязвимости

CVE-2009-2200

nvd

больше 16 лет назад

CVE-2009-2200

debian

больше 16 лет назад

WebKit in Apple Safari before 4.0.3 does not properly restrict the URL ...

GHSA-h983-8jqg-vmp6

github

почти 4 года назад

EPSS

Процентиль: 61%

0.00417

Низкий

7.1 High

CVSS2

CVE-2009-2200

Описание

Пакет kde4libs

Пакет kdelibs

Пакет qt4-x11

Пакет webkit

Ссылки на источники

Связанные уязвимости