CVE-2009-1706

EUVD-2009-1701
The Private Browsing feature in Apple Safari before 4.0 on Windows does not remove cookies from the alternate cookie store in unspecified circumstances upon (1) disabling of the feature or (2) exit of the application, which makes it easier for remote web servers to track users via a cookie.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 66%
Affected Products (NVD)
VendorProductVersion
applesafari
𝑥
≤ 3.2.3
applesafari
3.0
applesafari
3.0.1
applesafari
3.0.2
applesafari
3.0.3
applesafari
3.0.4
applesafari
3.1
applesafari
3.1.1
applesafari
3.1.2
applesafari
3.2
applesafari
3.2.1
applesafari
3.2.2
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://lists.apple.com/archives/security-announce/2009/jun/msg00002.html
http://osvdb.org/54997
http://secunia.com/advisories/35379
http://support.apple.com/kb/HT3613
http://www.securityfocus.com/bid/35260
http://www.securityfocus.com/bid/35346
http://www.vupen.com/english/advisories/2009/1522
http://lists.apple.com/archives/security-announce/2009/jun/msg00002.html
http://osvdb.org/54997
http://secunia.com/advisories/35379
http://support.apple.com/kb/HT3613
http://www.securityfocus.com/bid/35260
http://www.securityfocus.com/bid/35346
http://www.vupen.com/english/advisories/2009/1522