What is the severity of CVE-2009-1687?

CVE-2009-1687 is considered to have a high severity level due to its potential to allow remote code execution and cause denial of service.

How do I fix CVE-2009-1687?

To fix CVE-2009-1687, update Apple Safari to version 4.0 or later, which contains security patches to address this vulnerability.

Which versions of Safari are affected by CVE-2009-1687?

CVE-2009-1687 affects various versions of Apple Safari, including versions prior to 4.0, such as 1.0 through 3.2.3.

What are the potential risks associated with CVE-2009-1687?

The potential risks of CVE-2009-1687 include remote code execution and memory corruption, leading to application crashes or unauthorized actions.

Is CVE-2009-1687 specific to any operating systems?

CVE-2009-1687 is applicable to both macOS and Windows versions of Apple Safari prior to 4.0.

Vulnerability/
CVE-2009-1687

critical

9.3

CWE

399

10/6/2009

29/9/2017

CVE-2009-1687

First published: Wed Jun 10 2009(Updated: )

The JavaScript garbage collector in WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not properly handle allocation failures, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document that triggers write access to an "offset of a NULL pointer."

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Apple Mobile Safari	=1.1
Apple Mobile Safari	=1.3.1
Apple Mobile Safari	=3.2.3
Apple Mobile Safari	=2.0.2
Apple Mobile Safari	=3.1
Apple Mobile Safari	=3.1.2
Apple Mobile Safari	=3.0
Apple Mobile Safari	=0.8
Apple Mobile Safari	=2.0
Apple Mobile Safari	=3.0.4
Apple Mobile Safari	=0.9
Apple Mobile Safari	=3.0.3
Apple Mobile Safari	=1.3.2
Apple Mobile Safari	=1.2
Apple Mobile Safari	<=4.0_beta
Apple Mobile Safari	=3.2.1
Apple Mobile Safari	=3.0.2
Apple Mobile Safari	=2.0.4
Apple Mobile Safari	=3.1.1
Apple Mobile Safari	=1.0.3
Apple Mobile Safari	=1.0
Apple Mobile Safari	=1.3
Apple Mobile Safari	=3.2
Apple Mobile Safari	=3.0.1
Apple Mobile Safari	=3.1.2
Apple Mobile Safari	<=3.2.3
Apple Mobile Safari	=3.0.3
Apple Mobile Safari	=3.0.2
Apple Mobile Safari	=3.1.1
Apple Mobile Safari	=3.0
Apple Mobile Safari	=3.1
Apple Mobile Safari	=3.2.2
Apple Mobile Safari	=3.2.1
Apple Mobile Safari	=3.0.4

Remedy

http://securitytracker.com/id?1022345

Remedy

http://www.vupen.com/english/advisories/2009/1522

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2009-1687?
CVE-2009-1687 is considered to have a high severity level due to its potential to allow remote code execution and cause denial of service.
How do I fix CVE-2009-1687?
To fix CVE-2009-1687, update Apple Safari to version 4.0 or later, which contains security patches to address this vulnerability.
Which versions of Safari are affected by CVE-2009-1687?
CVE-2009-1687 affects various versions of Apple Safari, including versions prior to 4.0, such as 1.0 through 3.2.3.
What are the potential risks associated with CVE-2009-1687?
The potential risks of CVE-2009-1687 include remote code execution and memory corruption, leading to application crashes or unauthorized actions.
Is CVE-2009-1687 specific to any operating systems?
CVE-2009-1687 is applicable to both macOS and Windows versions of Apple Safari prior to 4.0.

agent/weakness
agent/author
agent/severity
agent/references
agent/event
agent/description
agent/type
agent/remedy
agent/last-modified-date
agent/softwarecombine
agent/first-publish-date
agent/tags
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
vendor/apple
canonical/apple mobile safari
version/apple mobile safari/1.1
version/apple mobile safari/1.3.1
version/apple mobile safari/3.2.3
version/apple mobile safari/2.0.2
version/apple mobile safari/3.1
version/apple mobile safari/3.1.2
version/apple mobile safari/3.0
version/apple mobile safari/0.8
version/apple mobile safari/2.0
version/apple mobile safari/3.0.4
version/apple mobile safari/0.9
version/apple mobile safari/3.0.3
version/apple mobile safari/1.3.2
version/apple mobile safari/1.2
version/apple mobile safari/4.0_beta
version/apple mobile safari/3.2.1
version/apple mobile safari/3.0.2
version/apple mobile safari/2.0.4
version/apple mobile safari/3.1.1
version/apple mobile safari/1.0.3
version/apple mobile safari/1.0
version/apple mobile safari/1.3
version/apple mobile safari/3.2
version/apple mobile safari/3.0.1
version/apple mobile safari/3.2.2

CVE-2009-1687

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2009-1687?

How do I fix CVE-2009-1687?

Which versions of Safari are affected by CVE-2009-1687?

What are the potential risks associated with CVE-2009-1687?

Is CVE-2009-1687 specific to any operating systems?

Company

Resources

Contact