What is the severity of CVE-2009-1693?

CVE-2009-1693 has been classified as a moderate severity vulnerability.

How do I fix CVE-2009-1693?

To fix CVE-2009-1693, users should update to the latest version of Apple Safari.

What versions of Safari are affected by CVE-2009-1693?

CVE-2009-1693 affects various versions of Apple Safari including 0.9 to 3.2.3.

What type of attack does CVE-2009-1693 enable?

CVE-2009-1693 enables remote attackers to read images from arbitrary web sites.

Is CVE-2009-1693 related to cross-site issues?

Yes, CVE-2009-1693 is related to a cross-site image capture issue within Safari's handling of CANVAS and SVG.

Vulnerability/
CVE-2009-1693

medium

5.8

CWE

NVD-CWE-Other

10/6/2009

17/2/2011

CVE-2009-1693

First published: Wed Jun 10 2009(Updated: )

WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 allows remote attackers to read images from arbitrary web sites via a CANVAS element with an SVG image, related to a "cross-site image capture issue."

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Apple Mobile Safari	=3.1.2
Apple Mobile Safari	=3.2.1
Apple Mobile Safari	=0.9
Apple Mobile Safari	=1.3.2
Apple Mobile Safari	=1.2
Apple Mobile Safari	=3.0.4
Apple Mobile Safari	=3.0.3
Apple Mobile Safari	=1.3.1
Apple Mobile Safari	=2.0.4
Apple Mobile Safari	=3.0
Apple Mobile Safari	=3.2.3
Apple Mobile Safari	=1.1
Apple Mobile Safari	<=4.0_beta
Apple Mobile Safari	=3.1
Apple Mobile Safari	=2.0
Apple Mobile Safari	=3.0.2
Apple Mobile Safari	=1.0.3
Apple Mobile Safari	=1.0
Apple Mobile Safari	=2.0.2
Apple Mobile Safari	=3.1.1
Apple Mobile Safari	=1.3
Apple Mobile Safari	=0.8
Apple Mobile Safari	=3.2
Apple Mobile Safari	=3.0.3
Apple Mobile Safari	=3.0.1
Apple Mobile Safari	=3.1.2
Apple Mobile Safari	<=3.2.3
Apple Mobile Safari	=3.0.2
Apple Mobile Safari	=3.1
Apple Mobile Safari	=3.1.1
Apple Mobile Safari	=3.0
Apple Mobile Safari	=3.2.2
Apple Mobile Safari	=3.2.1
Apple Mobile Safari	=3.0.4

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2009-1693?
CVE-2009-1693 has been classified as a moderate severity vulnerability.
How do I fix CVE-2009-1693?
To fix CVE-2009-1693, users should update to the latest version of Apple Safari.
What versions of Safari are affected by CVE-2009-1693?
CVE-2009-1693 affects various versions of Apple Safari including 0.9 to 3.2.3.
What type of attack does CVE-2009-1693 enable?
CVE-2009-1693 enables remote attackers to read images from arbitrary web sites.
Is CVE-2009-1693 related to cross-site issues?
Yes, CVE-2009-1693 is related to a cross-site image capture issue within Safari's handling of CANVAS and SVG.

agent/author
agent/severity
agent/weakness
agent/references
agent/type
agent/description
agent/event
agent/remedy
agent/softwarecombine
agent/last-modified-date
agent/tags
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
vendor/apple
canonical/apple mobile safari
version/apple mobile safari/3.1.2
version/apple mobile safari/3.2.1
version/apple mobile safari/0.9
version/apple mobile safari/1.3.2
version/apple mobile safari/1.2
version/apple mobile safari/3.0.4
version/apple mobile safari/3.0.3
version/apple mobile safari/1.3.1
version/apple mobile safari/2.0.4
version/apple mobile safari/3.0
version/apple mobile safari/3.2.3
version/apple mobile safari/1.1
version/apple mobile safari/4.0_beta
version/apple mobile safari/3.1
version/apple mobile safari/2.0
version/apple mobile safari/3.0.2
version/apple mobile safari/1.0.3
version/apple mobile safari/1.0
version/apple mobile safari/2.0.2
version/apple mobile safari/3.1.1
version/apple mobile safari/1.3
version/apple mobile safari/0.8
version/apple mobile safari/3.2
version/apple mobile safari/3.0.1
version/apple mobile safari/3.2.2

CVE-2009-1693

Remedy

Remedy

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2009-1693?

How do I fix CVE-2009-1693?

What versions of Safari are affected by CVE-2009-1693?

What type of attack does CVE-2009-1693 enable?

Is CVE-2009-1693 related to cross-site issues?

Company

Resources

Contact