7.5

CVE-2009-1699

Exploit
The XSL stylesheet implementation in WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not properly handle XML external entities, which allows remote attackers to read arbitrary files via a crafted DTD, as demonstrated by a file:///etc/passwd URL in an entity declaration, related to an "XXE attack."
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
AppleSafari Version < 4.0
AppleiPhone OS Version >= 1.0.0 <= 2.2.1
CanonicalUbuntu Linux Version8.10
CanonicalUbuntu Linux Version9.04
OpensuseOpensuse Version11.2
OpensuseOpensuse Version11.3
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 29.1% 0.979
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 3.9 3.6
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
nvd@nist.gov 7.1 8.6 6.9
AV:N/AC:M/Au:N/C:C/I:N/A:N
CWE-611 Improper Restriction of XML External Entity Reference

The product processes an XML document that can contain XML entities with URIs that resolve to documents outside of the intended sphere of control, causing the product to embed incorrect documents into its output.

http://lists.apple.com/archives/security-announce/2009/jun/msg00002.html
Patch
Vendor Advisory
Broken Link
Mailing List
http://secunia.com/advisories/35379
Vendor Advisory
Broken Link
http://support.apple.com/kb/HT3613
Patch
Vendor Advisory
http://www.vupen.com/english/advisories/2009/1522
Patch
Vendor Advisory
Broken Link
http://lists.apple.com/archives/security-announce/2009/Jun/msg00005.html
Mailing List
http://support.apple.com/kb/HT3639
Vendor Advisory
http://www.vupen.com/english/advisories/2009/1621
Broken Link
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html
Mailing List
http://secunia.com/advisories/43068
Broken Link
http://www.vupen.com/english/advisories/2011/0212
Broken Link
http://www.ubuntu.com/usn/USN-857-1
Third Party Advisory
http://www.securityfocus.com/bid/35260
Third Party Advisory
Exploit
Broken Link
VDB Entry
http://osvdb.org/54972
Broken Link
http://scary.beasts.org/security/CESA-2009-006.html
Exploit
http://scarybeastsecurity.blogspot.com/2009/06/apples-safari-4-fixes-local-file-theft.html
Exploit
http://www.securityfocus.com/bid/35321
Third Party Advisory
Broken Link
VDB Entry
https://www.exploit-db.com/exploits/8907
Third Party Advisory
Exploit
VDB Entry