漏洞信息详情
CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple Safari 代码注入漏洞
- CNNVD编号:CNNVD-200906-182
- 危害等级: 中危
- CVE编号: CVE-2009-1698
- 漏洞类型: 代码注入
- 发布时间: 2009-01-14
- 威胁类型: 远程
- 更新时间: 2022-08-10
- 厂 商: CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple
- 漏洞来源: Sergio AlvarezBill...
漏洞简介
CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple Safari是美国苹果(CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple)公司的一款Web浏览器,是Mac OS X和iOS操作系统附带的默认浏览器。
CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple Safari \"WebKit\"处理CSS attr函数时存在代码注入漏洞,查看恶意网页可能导致应用程序意外终止或执行任意代码 。
漏洞公告
目前厂商已发布升级补丁以修复漏洞,补丁获取链接:
https://lists.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/archives/security-announce/2009/Jun/msg00005.HTML
参考网址
来源:FEDORA
链接:https://www.redhat.com/archives/fedora-package-announce/2009-July/msg01200.HTML
来源:REDHAT
链接:http://www.redhat.com/support/errata/RHSA-2009-1128.HTML
来源:CONFIRM
链接:http://support.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/kb/HT3639
来源:CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple
链接:http://lists.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/archives/security-announce/2009/Jun/msg00005.HTML
来源:SECUNIA
链接:http://secunia.com/advisories/36062
来源:BUGTRAQ
链接:http://www.securityfocus.com/archive/1/504295/100/0/threaded
来源:SECUNIA
链接:http://secunia.com/advisories/37746
来源:SECUNIA
链接:http://secunia.com/advisories/35588
来源:VUPEN
链接:http://www.vupen.com/english/advisories/2011/0212
来源:OVAL
链接:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9484
来源:BUGTRAQ
链接:http://www.securityfocus.com/archive/1/504173/100/0/threaded
来源:UBUNTU
链接:http://www.ubuntu.com/usn/USN-822-1
来源:VUPEN
链接:http://www.vupen.com/english/advisories/2009/1522
来源:VUPEN
链接:http://www.vupen.com/english/advisories/2009/1621
来源:SUSE
链接:http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.HTML
来源:BID
链接:https://www.securityfocus.com/bid/35260
来源:OSVDB
链接:http://osvdb.org/55006
来源:SECUNIA
链接:http://secunia.com/advisories/43068
来源:SECTRACK
链接:http://securitytracker.com/id?1022345
来源:FEDORA
链接:https://www.redhat.com/archives/fedora-package-announce/2009-July/msg01177.HTML
来源:BID
链接:https://www.securityfocus.com/bid/35318
来源:MANDRIVA
链接:http://www.mandriva.com/security/advisories?name=MDVSA-2009:330
来源:SECUNIA
链接:http://secunia.com/advisories/36057
来源:CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple
链接:http://lists.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/archives/security-announce/2009/jun/msg00002.HTML
来源:SECUNIA
链接:http://secunia.com/advisories/36790
来源:FEDORA
链接:https://www.redhat.com/archives/fedora-package-announce/2009-July/msg01199.HTML
来源:SECUNIA
链接:http://secunia.com/advisories/35379
来源:MISC
链接:http://blog.zoller.lu/2009/05/advisory-CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple-safari-remote-code.HTML
来源:FEDORA
链接:https://www.redhat.com/archives/fedora-package-announce/2009-July/msg01196.HTML
来源:CONFIRM
链接:http://support.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/kb/HT3613
来源:UBUNTU
链接:http://www.ubuntu.com/usn/USN-857-1
来源:UBUNTU
链接:http://www.ubuntu.com/usn/USN-836-1
来源:MISC
链接:http://www.zerodayinitiative.com/advisories/ZDI-09-032/
来源:DEBIAN
链接:https://www.debian.org/security/2009/dsa-1950
受影响实体
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple Safari:3.0.1b
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple Safari:3.0.1:Beta
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple Safari:3.0.1
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple Safari:3.0.0b
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple Safari:3.0.0
补丁
暂无
![weinxin](http://zone.ci/zone_ci_images/zone.ci.png)
评论