PT-2009-4180 · Apple · Ios+3
Chris Evans
·
Publicado
2009-06-10
·
Atualizado
2022-08-09
·
CVE-2009-1700
CVSS v2.0
4.3
Média
| Vetor | AV:N/AC:M/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions:
Apple Safari versions prior to 4.0
iPhone OS versions prior to 2.2.1
iPhone OS for iPod touch versions prior to 2.2.1
Description:
The XSLT implementation in WebKit does not properly handle redirects, allowing remote attackers to read XML content from arbitrary web pages via a crafted document.
Recommendations:
For Apple Safari versions prior to 4.0, update to version 4.0 or later.
For iPhone OS versions prior to 2.2.1, update to version 2.2.1 or later.
For iPhone OS for iPod touch versions prior to 2.2.1, update to version 2.2.1 or later.
Exploit
Correção
Information Disclosure
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Safari
Webkit
Ios
Iphone Os For Ipod Touch