CVE-2009-1690

NONECVSS 0.0

0.0

Use-after-free vulnerability in WebKit, as used in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, iPhone OS for iPod touch 1.1 through 2.2.1, Google Chrome 1.0.154.53, and possibly other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) by setting an unspecified property of an HTML tag that causes child elements to be freed and later accessed when an HTML error occurs, related to "recursion in certain DOM event handlers."

🔗 References (56)

cve@mitrehttp://labs.idefense.com/intelligence/vulnerabilities/display.php?id=803
cve@mitrehttp://lists.apple.com/archives/security-announce/2009/Jun/msg00005.html
cve@mitrehttp://lists.apple.com/archives/security-announce/2009/jun/msg00002.html
cve@mitrehttp://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html
cve@mitrehttp://osvdb.org/54990
cve@mitrehttp://secunia.com/advisories/35379
cve@mitrehttp://secunia.com/advisories/36057
cve@mitrehttp://secunia.com/advisories/36062
cve@mitrehttp://secunia.com/advisories/36790
cve@mitrehttp://secunia.com/advisories/37746
cve@mitrehttp://secunia.com/advisories/43068
cve@mitrehttp://securitytracker.com/id?1022345
cve@mitrehttp://support.apple.com/kb/HT3613
cve@mitrehttp://support.apple.com/kb/HT3639
cve@mitrehttp://www.debian.org/security/2009/dsa-1950

Is Your Infrastructure Affected by CVE-2009-1690?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2009-1690

📅 Published

🔄 Last Modified

🔗 References (56)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2009-1690?