Lucene search
Ubuntu.comUB:CVE-2009-1688HistoryJun 10, 2009 - 12:00 a.m.
CVE-2009-1688
2009-06-1000:00:00
ubuntu.com
ubuntu.com
10
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.004 Low
EPSS
Percentile
75.0%
Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari before
4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through
2.2.1 allows remote attackers to inject arbitrary web script or HTML via
vectors related to determining a security context through an approach that
is not the “HTML 5 standard method.”
Bugs
Notes
| Author | Note |
|---|---|
| jdstrand | webkit is a fork of khtml from kdelibs. kdelibs5 is farther from it, while qt4-x11 attempts to unify khtml and webkit |
| mdeslaur | code doesn’t seem present in kde4libs code is substantially different in hardy. not sure is vulnerable. |
Related
debiancve
debiancve
CVE-2009-1688
2009-06-10 14:30:00
cve
cve
CVE-2009-1688
2009-06-10 14:30:00
prion
prion
Cross site scripting
2009-06-10 14:30:00
cvelist
cvelist
CVE-2009-1688
2009-06-10 14:00:00
nvd
nvd
CVE-2009-1688
2009-06-10 14:30:00
ubuntucve
ubuntucve
CVE-2009-1689
2009-06-10 00:00:00
CVE-2009-1691
2009-06-10 00:00:00
openvas
openvas
Apple Safari Multiple Vulnerabilities - 02 - (Jun 2009) - Windows
2009-06-16 00:00:00
Apple Safari Multiple Vulnerabilities June-09 (Windows) - II
2009-06-16 00:00:00
seebug
seebug
Apple Safari 4.0多个安全漏洞
2009-06-11 00:00:00
nessus
nessus
Mac OS X : Apple Safari < 4.0
2009-06-09 00:00:00
Safari < 4.0 Multiple Vulnerabilities
2009-06-09 00:00:00
openSUSE Security Update : libwebkit (openSUSE-SU-2011:0024-1)
2011-05-05 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.004 Low
EPSS
Percentile
75.0%
Related for UB:CVE-2009-1688