CVE-2009-2841

EUVD-2009-2831
The HTMLMediaElement::loadResource function in html/HTMLMediaElement.cpp in WebCore in WebKit before r49480, as used in Apple Safari before 4.0.4 on Mac OS X, does not perform the expected callbacks for HTML 5 media elements that have external URLs for media resources, which allows remote attackers to trigger sub-resource requests to arbitrary web sites via a crafted HTML document, as demonstrated by an HTML e-mail message that uses a media element for X-Confirm-Reading-To functionality, aka rdar problem 7271202.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 88%
Affected Products (NVD)
VendorProductVersion
applesafari
𝑥
≤ 4.0.3
applesafari
0.8
applesafari
0.9
applesafari
1.0
applesafari
1.0:beta
applesafari
1.0:beta2
applesafari
1.0.0
applesafari
1.0.0b1:b1
applesafari
1.0.0b2:b2
applesafari
1.0.1
applesafari
1.0.2
applesafari
1.0.3
applesafari
1.1.0
applesafari
1.1.1
applesafari
1.2
applesafari
1.2.0
applesafari
1.2.1
applesafari
1.2.2
applesafari
1.2.3
applesafari
1.2.4
applesafari
1.2.5
applesafari
1.3
applesafari
1.3.0
applesafari
1.3.1
applesafari
1.3.2
applesafari
2.0
applesafari
2.0.0
applesafari
2.0.1
applesafari
2.0.2
applesafari
2.0.3
applesafari
2.0.3:417.8
applesafari
2.0.3:417.9
applesafari
2.0.3:417.9.2
applesafari
2.0.3:417.9.3
applesafari
2.0.3_417.9.3:_417.9
applesafari
2.0.4
applesafari
2.0.4_419.3:_419.3
applesafari
2.0_pre:_pre
applesafari
3.0
applesafari
3.0.0
applesafari
3.0.0b:b
applesafari
3.0.1
applesafari
3.0.1:beta
applesafari
3.0.1b:b
applesafari
3.0.2
applesafari
3.0.2b:b
applesafari
3.0.3
applesafari
3.0.3b:b
applesafari
3.0.4
applesafari
3.0.4_beta:_beta
applesafari
3.0.4b:b
applesafari
3.1
applesafari
3.1.0
applesafari
3.1.0b:b
applesafari
3.1.1
applesafari
3.1.2
applesafari
3.2
applesafari
3.2.0
applesafari
3.2.1
applesafari
3.2.2
applesafari
3.2.3
applesafari
4.0
applesafari
4.0:beta
applesafari
4.0.0b:b
applesafari
4.0.1
applesafari
4.0.2
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
qt4-x11
dapper
not-affected
hardy
not-affected
intrepid
ignored
jaunty
ignored
karmic
ignored
lucid
not-affected
maverick
not-affected
natty
not-affected
webkit
dapper
dne
hardy
ignored
intrepid
ignored
jaunty
ignored
karmic
Fixed 1.2.5-0ubuntu0.9.10.1
released
lucid
not-affected
maverick
not-affected
natty
not-affected
References
http://lists.apple.com/archives/security-announce/2009/Nov/msg00001.html
http://lists.apple.com/archives/security-announce/2010/Feb/msg00000.html
http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044023.html
http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044031.html
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html
http://osvdb.org/59941
http://secunia.com/advisories/37346
http://secunia.com/advisories/40557
http://secunia.com/advisories/41856
http://secunia.com/advisories/43068
http://support.apple.com/kb/HT3949
http://support.apple.com/kb/HT4013
http://threatpost.com/en_us/blogs/apple-patches-critical-safari-vulnerabilities-111109
http://trac.webkit.org/changeset/49480
http://www.mandriva.com/security/advisories?name=MDVSA-2011:039
http://www.securityfocus.com/bid/36996
http://www.securitytracker.com/id?1023167
http://www.ubuntu.com/usn/USN-1006-1
http://www.vupen.com/english/advisories/2009/3217
http://www.vupen.com/english/advisories/2010/1801
http://www.vupen.com/english/advisories/2010/2722
http://www.vupen.com/english/advisories/2011/0212
http://www.vupen.com/english/advisories/2011/0552
https://bugzilla.redhat.com/show_bug.cgi?id=525791
https://exchange.xforce.ibmcloud.com/vulnerabilities/54242
http://lists.apple.com/archives/security-announce/2009/Nov/msg00001.html
http://lists.apple.com/archives/security-announce/2010/Feb/msg00000.html
http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044023.html
http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044031.html
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html
http://osvdb.org/59941
http://secunia.com/advisories/37346
http://secunia.com/advisories/40557
http://secunia.com/advisories/41856
http://secunia.com/advisories/43068
http://support.apple.com/kb/HT3949
http://support.apple.com/kb/HT4013
http://threatpost.com/en_us/blogs/apple-patches-critical-safari-vulnerabilities-111109
http://trac.webkit.org/changeset/49480
http://www.mandriva.com/security/advisories?name=MDVSA-2011:039
http://www.securityfocus.com/bid/36996
http://www.securitytracker.com/id?1023167
http://www.ubuntu.com/usn/USN-1006-1
http://www.vupen.com/english/advisories/2009/3217
http://www.vupen.com/english/advisories/2010/1801
http://www.vupen.com/english/advisories/2010/2722
http://www.vupen.com/english/advisories/2011/0212
http://www.vupen.com/english/advisories/2011/0552
https://bugzilla.redhat.com/show_bug.cgi?id=525791
https://exchange.xforce.ibmcloud.com/vulnerabilities/54242