Published: 10/06/2009 Updated: 10/02/2024

CVSS v2 Base Score: 7.1 | Impact Score: 6.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 715

Vector: AV:N/AC:M/Au:N/C:C/I:N/A:N

The XSL stylesheet implementation in WebKit in Apple Safari prior to 4.0, iPhone OS 1.0 up to and including 2.2.1, and iPhone OS for iPod touch 1.1 up to and including 2.2.1 does not properly handle XML external entities, which allows remote malicious users to read arbitrary files via a crafted DTD, as demonstrated by a file:///etc/passwd URL in an entity declaration, related to an "XXE attack."

Vulnerable Product	Search on Vulmon	Subscribe to Product
apple iphone os
apple safari
canonical ubuntu linux 9.04
canonical ubuntu linux 8.10
opensuse opensuse 11.2
opensuse opensuse 11.3

It was discovered that QtWebKit did not properly handle certain SVGPathList data structures If a user were tricked into viewing a malicious website, an attacker could exploit this to execute arbitrary code with the privileges of the user invoking the program (CVE-2009-0945) ...

Debian Bug report logs - #545793 CVE-2009-2700: QSslCertificate incorrect verification of SSL certificate with NUL in subjectAltName Package: qt4-x11; Maintainer for qt4-x11 is Debian Qt/KDE Maintainers <debian-qt-kde@listsdebianorg>; Reported by: Giuseppe Iuculano <giuseppe@iuculanoit> Date: Wed, 9 Sep 2009 08:00 ...

Debian Bug report logs - #535793 webkit: deluge of security vulnerabilities Package: webkit; Maintainer for webkit is (unknown); Reported by: Michael S Gilbert <michaelsgilbert@gmailcom> Date: Sun, 5 Jul 2009 05:18:04 UTC Severity: grave Tags: fixed-upstream, security Found in version 101-4 Fixed in version 1121-1 ...

source: wwwsecurityfocuscom/bid/35321/info WebKit is prone to a remote information-disclosure vulnerability An attacker can exploit this issue to obtain sensitive information that may aid in further attacks NOTE: This issue was previously covered in BID 35260 (Apple Safari Prior to 40 Multiple Security Vulnerabilities), but has been ...

CWE-611 http://lists.apple.com/archives/security-announce/2009/jun/msg00002.html http://www.vupen.com/english/advisories/2009/1522 http://www.securityfocus.com/bid/35260 http://secunia.com/advisories/35379 http://scarybeastsecurity.blogspot.com/2009/06/apples-safari-4-fixes-local-file-theft.html http://scary.beasts.org/security/CESA-2009-006.html http://support.apple.com/kb/HT3613 http://osvdb.org/54972 http://www.securityfocus.com/bid/35321 http://lists.apple.com/archives/security-announce/2009/Jun/msg00005.html http://support.apple.com/kb/HT3639 http://www.vupen.com/english/advisories/2009/1621 http://www.ubuntu.com/usn/USN-857-1 http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html http://secunia.com/advisories/43068 http://www.vupen.com/english/advisories/2011/0212 https://www.exploit-db.com/exploits/8907 https://usn.ubuntu.com/857-1/https://nvd.nist.gov https://www.exploit-db.com/exploits/33034/

CVE-2009-1699

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect