Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 10/06/2009 Updated: 19/06/2009

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 828

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Apple Safari prior to 4.0 does not prevent calls to the open-help-anchor URL handler by web sites, which allows remote malicious users to open arbitrary local help files, and execute arbitrary code or obtain sensitive information, via a crafted call.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apple safari 3.0
apple safari 3.0.3
apple safari 1.1
apple safari 1.2
apple safari 3.2.1
apple safari 3.2.3
apple safari 1.0
apple safari 1.0.3
apple safari 2.0.2
apple safari 2.0.4
apple safari 3.0.4
apple safari 3.1.1
apple safari 1.3
apple safari 1.3.1
apple safari
apple safari 3.0.2
apple safari 3.1
apple safari 3.1.2
apple safari 0.8
apple safari 1.3.2
apple safari 2.0
apple safari 0.9
apple safari 3.0.1
apple safari 3.2.2
apple safari 3.2

NVD-CWE-Other http://secunia.com/advisories/35379 http://support.apple.com/kb/HT3613 http://securitytracker.com/id?1022345 http://www.vupen.com/english/advisories/2009/1522 http://www.securityfocus.com/bid/35260 http://lists.apple.com/archives/security-announce/2009/jun/msg00002.html http://osvdb.org/55011 http://www.securityfocus.com/bid/35351 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2009-1708

Vulnerability Summary

References

Vulmon Search

About

Products

Connect