What is the severity of CVE-2009-1703?

CVE-2009-1703 has been classified as a vulnerability that could lead to information disclosure.

How do I fix CVE-2009-1703?

To mitigate CVE-2009-1703, users should upgrade to Apple Safari version 4.0 or later.

Which versions of Safari are affected by CVE-2009-1703?

CVE-2009-1703 affects multiple versions of Apple Safari, including all versions prior to 4.0.

What type of attack does CVE-2009-1703 enable?

CVE-2009-1703 allows attackers to determine the existence of arbitrary files on a victim's system through crafted HTML documents.

Is CVE-2009-1703 specific to any operating system?

CVE-2009-1703 affects Apple Safari running on both macOS and Windows operating systems.

Vulnerability/
CVE-2009-1703

high

7.1

CWE

200

10/6/2009

17/2/2011

CVE-2009-1703: Infoleak

First published: Wed Jun 10 2009(Updated: )

WebKit in Apple Safari before 4.0 does not prevent references to file: URLs within (1) audio and (2) video elements, which allows remote attackers to determine the existence of arbitrary files via a crafted HTML document.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Safari	=1.1
Safari	=1.3.1
Safari	=3.2.3
Safari	=2.0.2
Safari	=3.1
Safari	=3.1.2
Safari	=3.0
Safari	=0.8
Safari	=2.0
Safari	=3.0.4
Safari	=0.9
Safari	=3.0.3
Safari	=1.3.2
Safari	=1.2
Safari	<=4.0_beta
Safari	=3.2.1
Safari	=3.0.2
Safari	=2.0.4
Safari	=3.1.1
Safari	=1.0.3
Safari	=1.0
Safari	=1.3
Safari	=3.2
Safari	=3.0.1
Safari	=3.1.2
Safari	<=3.2.3
Safari	=3.0.3
Safari	=3.0.2
Safari	=3.1.1
Safari	=3.0
Safari	=3.1
Safari	=3.2.2
Safari	=3.2.1
Safari	=3.0.4

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2009-1703?
CVE-2009-1703 has been classified as a vulnerability that could lead to information disclosure.
How do I fix CVE-2009-1703?
To mitigate CVE-2009-1703, users should upgrade to Apple Safari version 4.0 or later.
Which versions of Safari are affected by CVE-2009-1703?
CVE-2009-1703 affects multiple versions of Apple Safari, including all versions prior to 4.0.
What type of attack does CVE-2009-1703 enable?
CVE-2009-1703 allows attackers to determine the existence of arbitrary files on a victim's system through crafted HTML documents.
Is CVE-2009-1703 specific to any operating system?
CVE-2009-1703 affects Apple Safari running on both macOS and Windows operating systems.

agent/references
agent/type
agent/last-modified-date
agent/first-publish-date
agent/remedy
agent/weakness
agent/severity
agent/author
agent/softwarecombine
agent/tags
agent/description
agent/event
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
vendor/apple
canonical/safari
version/safari/1.1
version/safari/1.3.1
version/safari/3.2.3
version/safari/2.0.2
version/safari/3.1
version/safari/3.1.2
version/safari/3.0
version/safari/0.8
version/safari/2.0
version/safari/3.0.4
version/safari/0.9
version/safari/3.0.3
version/safari/1.3.2
version/safari/1.2
version/safari/4.0_beta
version/safari/3.2.1
version/safari/3.0.2
version/safari/2.0.4
version/safari/3.1.1
version/safari/1.0.3
version/safari/1.0
version/safari/1.3
version/safari/3.2
version/safari/3.0.1
version/safari/3.2.2

CVE-2009-1703: Infoleak

Remedy

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2009-1703?

How do I fix CVE-2009-1703?

Which versions of Safari are affected by CVE-2009-1703?

What type of attack does CVE-2009-1703 enable?

Is CVE-2009-1703 specific to any operating system?

Company

Resources

Contact