Published: 19/06/2009 Updated: 09/08/2022

CVSS v2 Base Score: 7.1 | Impact Score: 6.9 | Exploitability Score: 8.6

VMScore: 632

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:C

WebKit before r41741, as used in Apple iPhone OS 1.0 up to and including 2.2.1, iPhone OS for iPod touch 1.1 up to and including 2.2.1, Safari, and other software, allows remote malicious users to cause a denial of service (memory consumption or device reset) via a web page containing an HTMLSelectElement object with a large length attribute, related to the length property of a Select object.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apple iphone_os 1.0.2
apple iphone_os 2.2
apple iphone_os 1.1.1
apple iphone_os 2.0.0
apple iphone_os 1.1.2
apple iphone_os 1.1.3
apple iphone_os 1.1.0
apple iphone_os 1.0.1
apple iphone_os 2.1
apple iphone_os 2.2.1
apple iphone_os 2.0
apple iphone_os 1.1.5
apple iphone_os 1.0.0
apple iphone_os 2.0.1
apple iphone_os 2.1.1
apple iphone_os 1.1.4
apple iphone_os 2.0.2
apple iphone_os
apple ipod_touch
apple safari

Several vulnerabilities have been discovered in WebKit, a Web content engine library for Gtk+ The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2009-0945 Array index error in the insertItemBefore method in WebKit, allows remote attackers to execute arbitrary code via a document with a SVGPathList data structu ...

Debian Bug report logs - #534946 webkit: CVE-2009-1698 CVE-2009-1690 CVE-2009-1687 Package: webkit; Maintainer for webkit is (unknown); Reported by: Giuseppe Iuculano <giuseppe@iuculanoit> Date: Sun, 28 Jun 2009 12:48:02 UTC Severity: grave Tags: lenny, patch, security Found in version 101-4 Fixed in versions 115-1, ...

Debian Bug report logs - #535793 webkit: deluge of security vulnerabilities Package: webkit; Maintainer for webkit is (unknown); Reported by: Michael S Gilbert <michaelsgilbert@gmailcom> Date: Sun, 5 Jul 2009 05:18:04 UTC Severity: grave Tags: fixed-upstream, security Found in version 101-4 Fixed in version 1121-1 ...

ECMAScript in IE5, IE6, IE7, IE8, Netscape, Firefox, Safari, Opera, Konqueror, Seamonkey, Wii, PS3, iPhone, iPod, Nokia, Siemens and various other browsers allows for a denial of service condition ...

CWE-399 http://support.apple.com/kb/HT3639 http://lists.apple.com/archives/security-announce/2009/Jun/msg00005.html http://www.vupen.com/english/advisories/2009/1621 http://www.securityfocus.com/bid/35414 http://osvdb.org/55242 http://www.securityfocus.com/bid/35446 https://bugs.webkit.org/show_bug.cgi?id=23319 http://www.g-sec.lu/one-bug-to-rule-them-all.html http://www.debian.org/security/2009/dsa-1950 http://secunia.com/advisories/37746 http://secunia.com/advisories/43068 http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html http://www.vupen.com/english/advisories/2011/0212 http://secunia.com/advisories/36977 http://kb.palm.com/wps/portal/kb/na/pre/p100eww/sprint/solutions/article/50607_en.html#121 https://www.exploit-db.com/exploits/9160 http://www.securityfocus.com/archive/1/505006/100/0/threaded http://www.securityfocus.com/archive/1/504989/100/0/threaded http://www.securityfocus.com/archive/1/504988/100/0/threaded http://www.securityfocus.com/archive/1/504969/100/0/threaded https://nvd.nist.gov https://www.debian.org/security/./dsa-1950

CVE-2009-1692

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect