What is the severity of CVE-2009-2027?

CVE-2009-2027 is considered a moderate severity vulnerability due to the potential for privileged escalation.

How do I fix CVE-2009-2027?

To fix CVE-2009-2027, upgrade Apple Safari to version 4.0 or later on Windows.

What versions of Apple Safari are affected by CVE-2009-2027?

CVE-2009-2027 affects Apple Safari versions prior to 4.0 on Windows.

Can local users exploit CVE-2009-2027?

Yes, local users can exploit CVE-2009-2027 by selecting an option that launches the application immediately post-installation.

What impact does CVE-2009-2027 have on system security?

CVE-2009-2027 may allow unauthorized local users to gain elevated privileges, compromising system security.

Vulnerability/
CVE-2009-2027

high

7.2

CWE

264

10/6/2009

17/8/2017

CVE-2009-2027

First published: Wed Jun 10 2009(Updated: )

The Installer in Apple Safari before 4.0 on Windows allows local users to gain privileges by checking a box that specifies an immediate launch of the application after installation, related to an unspecified compression method.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Apple Safari	=3.2
Apple Safari	=3.0.1
Apple Safari	=3.1.2
Apple Safari	<=3.2.3
Apple Safari	=3.0.3
Apple Safari	=3.0.2
Apple Safari	=3.1.1
Apple Safari	=3.0
Apple Safari	=3.1
Apple Safari	=3.2.2
Apple Safari	=3.2.1
Apple Safari	=3.0.4

Remedy

http://lists.apple.com/archives/security-announce/2009/jun/msg00002.html

Remedy

http://support.apple.com/kb/HT3613

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2009-2027?
CVE-2009-2027 is considered a moderate severity vulnerability due to the potential for privileged escalation.
How do I fix CVE-2009-2027?
To fix CVE-2009-2027, upgrade Apple Safari to version 4.0 or later on Windows.
What versions of Apple Safari are affected by CVE-2009-2027?
CVE-2009-2027 affects Apple Safari versions prior to 4.0 on Windows.
Can local users exploit CVE-2009-2027?
Yes, local users can exploit CVE-2009-2027 by selecting an option that launches the application immediately post-installation.
What impact does CVE-2009-2027 have on system security?
CVE-2009-2027 may allow unauthorized local users to gain elevated privileges, compromising system security.

agent/author
agent/description
agent/event
agent/first-publish-date
agent/last-modified-date
agent/references
agent/remedy
agent/severity
agent/softwarecombine
agent/tags
agent/type
agent/weakness
collector/nvd-historical
collector/nvd-index
vendor/apple
canonical/apple safari
version/apple safari/3.2
version/apple safari/3.0.1
version/apple safari/3.1.2
version/apple safari/3.2.3
version/apple safari/3.0.3
version/apple safari/3.0.2
version/apple safari/3.1.1
version/apple safari/3.0
version/apple safari/3.1
version/apple safari/3.2.2
version/apple safari/3.2.1
version/apple safari/3.0.4

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.