Lucene search

MitreCVE-2009-1600

HistoryMay 11, 2009 - 3:30 p.m.

CVE-2009-1600

2009-05-1115:30:00

CWE-264

mitre

web.nvd.nist.gov

apple safari

dom execution

vulnerability

pdf

form submission

javascript

uri

adobe acrobat

restrictions

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

6.3

Confidence

Low

EPSS

0.004

Percentile

72.5%

JSON

Apple Safari executes DOM calls in response to a javascript: URI in the target attribute of a submit element within a form contained in an inline PDF file, which might allow remote attackers to bypass intended Adobe Acrobat JavaScript restrictions on accessing the document object, as demonstrated by a web site that permits PDF uploads by untrusted users, and therefore has a shared document.domain between the web site and this javascript: URI. NOTE: the researcher reports that Adobe’s position is “a PDF file is active content.”

Affected configurations

Nvd

Node

applesafari

AND

adobeacrobat_readerMatch7.0

VendorProductVersionCPE
applesafari*cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*
adobeacrobat_reader7.0cpe:2.3:a:adobe:acrobat_reader:7.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
apple	safari	*	cpe:2.3:a:apple:safari::::::::
adobe	acrobat_reader	7.0	cpe:2.3:a:adobe:acrobat_reader:7.0:::::::*

References

secniche.org/papers/SNS_09_03_PDF_Silent_Form_Re_Purp_Attack.pdf

www.securityfocus.com/archive/1/503183/100/0/threaded

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

6.3

Confidence

Low

EPSS

0.004

Percentile

72.5%

JSON

Related for CVE-2009-1600