What is the severity of CVE-2009-0123?

CVE-2009-0123 has been noted as a significant risk due to its potential for remote file access.

How do I fix CVE-2009-0123?

To mitigate CVE-2009-0123, users should update Apple Safari to the latest version compatible with their operating system.

What versions of Safari are affected by CVE-2009-0123?

CVE-2009-0123 affects various versions of Apple Safari on Mac OS X 10.5 and Windows.

Are Mac OS X and Windows safe from CVE-2009-0123?

Older versions of Mac OS X 10.5 and Windows may be vulnerable to CVE-2009-0123 if Safari is installed.

What is the nature of the vulnerability CVE-2009-0123?

CVE-2009-0123 allows remote attackers to read arbitrary files from a client machine via malicious RSS feed links.

Vulnerability/
CVE-2009-0123

high

7.1

CWE

200

15/1/2009

8/8/2017

CVE-2009-0123: Infoleak

First published: Thu Jan 15 2009(Updated: )

Unspecified vulnerability in Apple Safari on Mac OS X 10.5 and Windows allows remote attackers to read arbitrary files on a client machine via vectors related to the association of Safari with the (1) feed, (2) feeds, and (3) feedsearch URL types for RSS feeds. NOTE: as of 20090114, the only disclosure is a vague pre-advisory. However, because it is from a well-known researcher, it is being assigned a CVE identifier for tracking purposes.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Apple Safari
macOS Yosemite	=10.5
Microsoft Windows

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2009-0123?
CVE-2009-0123 has been noted as a significant risk due to its potential for remote file access.
How do I fix CVE-2009-0123?
To mitigate CVE-2009-0123, users should update Apple Safari to the latest version compatible with their operating system.
What versions of Safari are affected by CVE-2009-0123?
CVE-2009-0123 affects various versions of Apple Safari on Mac OS X 10.5 and Windows.
Are Mac OS X and Windows safe from CVE-2009-0123?
Older versions of Mac OS X 10.5 and Windows may be vulnerable to CVE-2009-0123 if Safari is installed.
What is the nature of the vulnerability CVE-2009-0123?
CVE-2009-0123 allows remote attackers to read arbitrary files from a client machine via malicious RSS feed links.

collector/nvd-historical
agent/first-publish-date
agent/last-modified-date
agent/references
agent/type
agent/event
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
agent/description
agent/severity
agent/weakness
agent/author
agent/softwarecombine
vendor/apple
canonical/apple safari
canonical/macos yosemite
version/macos yosemite/10.5
vendor/microsoft
canonical/microsoft windows

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.

Frequently Asked Questions

What is the severity of CVE-2009-0123?
CVE-2009-0123 has been noted as a significant risk due to its potential for remote file access.
How do I fix CVE-2009-0123?
To mitigate CVE-2009-0123, users should update Apple Safari to the latest version compatible with their operating system.
What versions of Safari are affected by CVE-2009-0123?
CVE-2009-0123 affects various versions of Apple Safari on Mac OS X 10.5 and Windows.
Are Mac OS X and Windows safe from CVE-2009-0123?
Older versions of Mac OS X 10.5 and Windows may be vulnerable to CVE-2009-0123 if Safari is installed.
What is the nature of the vulnerability CVE-2009-0123?
CVE-2009-0123 allows remote attackers to read arbitrary files from a client machine via malicious RSS feed links.