WebKit Multiple Remote Code Execution, Denial of Service, and Information Disclosure Vulnerabilities
|
Bugtraq ID:
|
36995
|
|
Class:
|
Input Validation Error
|
|
CVE:
|
CVE-2009-3384
|
|
Remote:
|
Yes
|
|
Local:
|
No
|
|
Published:
|
Nov 11 2009 12:00AM
|
|
Updated:
|
Feb 02 2010 06:31PM
|
|
Credit:
|
Michal Zalewski of Google Inc.
<br><br>
|
|
Vulnerable:
|
WebKit Open Source Project WebKit r38566
WebKit Open Source Project WebKit 0
Red Hat Fedora 12
Red Hat Fedora 11
Red Hat Fedora 10
Pardus Linux 2009 0
Apple Safari 4.0.3 for Windows
Apple Safari 4.0.2 for Windows
Apple Safari 3.2.3 for Windows
Apple Safari 3.2.2 for Windows
Apple Safari 3.1.2 for Windows
Apple Safari 3.1.1 for Windows
Apple Safari 3.0.4 Beta for Windows
Apple Safari 3.0.3 Beta for Windows
Apple Safari 3.0.2 Beta for Windows
Apple Safari 3.0.1 Beta for Windows
Apple Safari 4 for Windows
Apple Safari 3.1 for Windows
Apple Safari 3 Beta for Windows
Apple iPod Touch 3.1.2
Apple iPod Touch 3.1.1
Apple iPod Touch 2.2.1
Apple iPod Touch 2.0.2
Apple iPod Touch 2.0.1
Apple iPod Touch 1.1.4
Apple iPod Touch 1.1.3
Apple iPod Touch 1.1.2
Apple iPod Touch 1.1.1
Apple iPod Touch 3.0
Apple iPod Touch 2.2
Apple iPod Touch 2.1
Apple iPod Touch 2.0
Apple iPod Touch 1.1
Apple iPod Touch 0
Apple iPhone 3.1.2
Apple iPhone 3.0.1
Apple iPhone 2.2.1
Apple iPhone 2.0.2
Apple iPhone 2.0.1
Apple iPhone 1.1.4
Apple iPhone 1.1.3
Apple iPhone 1.1.2
Apple iPhone 1.1.1
Apple iPhone 1.0.2
Apple iPhone 1.0.1
Apple iPhone 3.1
Apple iPhone 3.0
Apple iPhone 2.2
Apple iPhone 2.1
Apple iPhone 2.0
Apple iPhone 1.1
Apple iPhone 1
Apple iPhone 0
|
|
|
|
Not Vulnerable:
|
Apple Safari 4.0.4 for Windows
Apple iPod Touch 3.1.3
Apple iPhone 3.1.3
|
|
