CVE

Id
39131  
CVE No.
CVE-2009-1696  
Status
Candidate  
Description
WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 uses predictable random numbers in JavaScript applications, which makes it easier for remote web servers to track the behavior of a Safari user during a session.  
Phase
Assigned (20090520)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
429936 39131 CVE-2009-1696 CONFIRM:http://support.apple.com/kb/HT3613  View
429937 39131 CVE-2009-1696 CONFIRM:http://support.apple.com/kb/HT3639  View
429938 39131 CVE-2009-1696 APPLE:APPLE-SA-2009-06-08-1  View
429939 39131 CVE-2009-1696 URL:http://lists.apple.com/archives/security-announce/2009/jun/msg00002.html  View
429940 39131 CVE-2009-1696 APPLE:APPLE-SA-2009-06-17-1  View
429941 39131 CVE-2009-1696 URL:http://lists.apple.com/archives/security-announce/2009/Jun/msg00005.html  View
429942 39131 CVE-2009-1696 SUSE:SUSE-SR:2011:002  View
429943 39131 CVE-2009-1696 URL:http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html  View
429944 39131 CVE-2009-1696 BID:35260  View
429945 39131 CVE-2009-1696 URL:http://www.securityfocus.com/bid/35260  View
429946 39131 CVE-2009-1696 OSVDB:55027  View
429947 39131 CVE-2009-1696 URL:http://osvdb.org/55027  View
429948 39131 CVE-2009-1696 SECUNIA:35379  View
429949 39131 CVE-2009-1696 URL:http://secunia.com/advisories/35379  View
429950 39131 CVE-2009-1696 SECUNIA:43068  View
429951 39131 CVE-2009-1696 URL:http://secunia.com/advisories/43068  View
429952 39131 CVE-2009-1696 VUPEN:ADV-2009-1522  View
429953 39131 CVE-2009-1696 URL:http://www.vupen.com/english/advisories/2009/1522  View
429954 39131 CVE-2009-1696 VUPEN:ADV-2009-1621  View
429955 39131 CVE-2009-1696 URL:http://www.vupen.com/english/advisories/2009/1621  View
429956 39131 CVE-2009-1696 VUPEN:ADV-2011-0212  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
40769 JVNDB-2009-001775 複数の Apple 製品におけるリダイレクト処理に関する任意の Web ページから XML コンテンツを読まれる脆弱性 複数の Apple 製品の WebKit の Extensible Stylesheet Language Transformations (XSLT) 実装には、リダイレクト処理が適切に行われないため、任意の Web ページから XML コンテンツを読まれる脆弱性が存在します。 CVE-2009-1700 39131 4.3 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001775.html  View