CVE-2009-1724 Information

Feb 14, 2021 cve

Description

Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari before 4.0.2 as used on iPhone OS before 3.1 iPhone OS before 3.1.1 for iPod touch and other platforms allows remote attackers to inject arbitrary web script or HTML via vectors related to parent and top objects.

Reference

http://lists.apple.com/archives/security-announce/2009/Jul/msg00000.html http://lists.apple.com/archives/security-announce/2009/Sep/msg00001.html http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html http://osvdb.org/55738 http://secunia.com/advisories/35758 http://secunia.com/advisories/36677 http://secunia.com/advisories/43068 http://support.apple.com/kb/HT3666 http://support.apple.com/kb/HT3860 http://www.securityfocus.com/bid/35441 http://www.securitytracker.com/id?1022525 http://www.vupen.com/english/advisories/2009/1827 http://www.vupen.com/english/advisories/2011/0212 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A6208

Share on: