7.5

CVE-2009-1699

Exploit

The XSL stylesheet implementation in WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not properly handle XML external entities, which allows remote attackers to read arbitrary files via a crafted DTD, as demonstrated by a file:///etc/passwd URL in an entity declaration, related to an "XXE attack."

Data is provided by the National Vulnerability Database (NVD)
AppleSafari Version < 4.0
AppleiPhone OS Version >= 1.0.0 <= 2.2.1
CanonicalUbuntu Linux Version8.10
CanonicalUbuntu Linux Version9.04
OpensuseOpensuse Version11.2
OpensuseOpensuse Version11.3
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 5.63% 0.9
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 7.5 3.9 3.6
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
nvd@nist.gov 7.1 8.6 6.9
AV:N/AC:M/Au:N/C:C/I:N/A:N
CWE-611 Improper Restriction of XML External Entity Reference

The product processes an XML document that can contain XML entities with URIs that resolve to documents outside of the intended sphere of control, causing the product to embed incorrect documents into its output.

http://lists.apple.com/archives/security-announce/2009/jun/msg00002.html
Patch
Vendor Advisory
Broken Link
Mailing List
http://secunia.com/advisories/35379
Vendor Advisory
Broken Link
http://support.apple.com/kb/HT3613
Patch
Vendor Advisory
http://www.vupen.com/english/advisories/2009/1522
Patch
Vendor Advisory
Broken Link
http://www.securityfocus.com/bid/35260
Third Party Advisory
Exploit
Broken Link
VDB Entry
http://www.securityfocus.com/bid/35321
Third Party Advisory
Broken Link
VDB Entry
https://www.exploit-db.com/exploits/8907
Third Party Advisory
Exploit
VDB Entry