Lucene search

MitreCVE-2009-1710

HistoryJun 10, 2009 - 6:00 p.m.

CVE-2009-1710

2009-06-1018:00:00

mitre

web.nvd.nist.gov

cve-2009-1710

webkit

apple safari

remote attackers

ui spoofing

css3

security vulnerability

CVSS2

2.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:N/A:N

AI Score

7.8

Confidence

High

EPSS

0.006

Percentile

78.1%

JSON

WebKit in Apple Safari before 4.0 allows remote attackers to spoof the browser’s display of (1) the host name, (2) security indicators, and unspecified other UI elements via a custom cursor in conjunction with a modified CSS3 hotspot property.

Affected configurations

Nvd

Node

applesafariRange≤4.0_beta-mac

applesafariMatch0.8-mac

applesafariMatch0.9-mac

applesafariMatch1.0-mac

applesafariMatch1.0.3-mac

applesafariMatch1.1-mac

applesafariMatch1.2-mac

applesafariMatch1.3-mac

applesafariMatch1.3.1-mac

applesafariMatch1.3.2-mac

applesafariMatch2.0-mac

applesafariMatch2.0.2-mac

applesafariMatch2.0.4-mac

applesafariMatch3.0-mac

applesafariMatch3.0.2-mac

applesafariMatch3.0.3-mac

applesafariMatch3.0.4-mac

applesafariMatch3.1-mac

applesafariMatch3.1.1-mac

applesafariMatch3.1.2-mac

applesafariMatch3.2.1-mac

applesafariMatch3.2.3-mac

Node

applesafariRange≤3.2.3-windows

applesafariMatch3.0-windows

applesafariMatch3.0.1-windows

applesafariMatch3.0.2-windows

applesafariMatch3.0.3-windows

applesafariMatch3.0.4-windows

applesafariMatch3.1-windows

applesafariMatch3.1.1-windows

applesafariMatch3.1.2-windows

applesafariMatch3.2-windows

applesafariMatch3.2.1-windows

applesafariMatch3.2.2-windows

VendorProductVersionCPE
applesafari*cpe:2.3:a:apple:safari:*:-:mac:*:*:*:*:*
applesafari0.8cpe:2.3:a:apple:safari:0.8:-:mac:*:*:*:*:*
applesafari0.9cpe:2.3:a:apple:safari:0.9:-:mac:*:*:*:*:*
applesafari1.0cpe:2.3:a:apple:safari:1.0:-:mac:*:*:*:*:*
applesafari1.0.3cpe:2.3:a:apple:safari:1.0.3:-:mac:*:*:*:*:*
applesafari1.1cpe:2.3:a:apple:safari:1.1:-:mac:*:*:*:*:*
applesafari1.2cpe:2.3:a:apple:safari:1.2:-:mac:*:*:*:*:*
applesafari1.3cpe:2.3:a:apple:safari:1.3:-:mac:*:*:*:*:*
applesafari1.3.1cpe:2.3:a:apple:safari:1.3.1:-:mac:*:*:*:*:*
applesafari1.3.2cpe:2.3:a:apple:safari:1.3.2:-:mac:*:*:*:*:*

Vendor	Product	Version	CPE
apple	safari	*	cpe:2.3:a:apple:safari::-:mac:::::
apple	safari	0.8	cpe:2.3:a:apple:safari:0.8:-:mac:::::*
apple	safari	0.9	cpe:2.3:a:apple:safari:0.9:-:mac:::::*
apple	safari	1.0	cpe:2.3:a:apple:safari:1.0:-:mac:::::*
apple	safari	1.0.3	cpe:2.3:a:apple:safari:1.0.3:-:mac:::::*
apple	safari	1.1	cpe:2.3:a:apple:safari:1.1:-:mac:::::*
apple	safari	1.2	cpe:2.3:a:apple:safari:1.2:-:mac:::::*
apple	safari	1.3	cpe:2.3:a:apple:safari:1.3:-:mac:::::*
apple	safari	1.3.1	cpe:2.3:a:apple:safari:1.3.1:-:mac:::::*
apple	safari	1.3.2	cpe:2.3:a:apple:safari:1.3.2:-:mac:::::*