Home > Vulnerability Database > CVE-2009-1710

Mend.io Vulnerability Database

New vulnerability? Tell us about it!

CVE-2009-1710

Date: June 10, 2009

WebKit in Apple Safari before 4.0 allows remote attackers to spoof the browser's display of (1) the host name, (2) security indicators, and unspecified other UI elements via a custom cursor in conjunction with a modified CSS3 hotspot property.

Severity Score

3.7

Related Resources (15)

Url: http://lists.apple.com/archives/security-announce/2009/jun/msg00002.html

Url: http://secunia.com/advisories/37746

Url: http://www.vupen.com/english/advisories/2009/1522

Url: http://www.debian.org/security/2009/dsa-1950

Url: https://nvd.nist.gov/vuln/detail/CVE-2009-1710

Url: http://www.securityfocus.com/bid/35340

Url: http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html

Url: http://www.securityfocus.com/bid/35260

Url: http://secunia.com/advisories/35379

Url: http://secunia.com/advisories/43068

Url: http://support.apple.com/kb/HT3613

Url: https://exchange.xforce.ibmcloud.com/vulnerabilities/51263

Url: http://osvdb.org/55014

Url: http://www.vupen.com/english/advisories/2011/0212

Url: https://www.mend.io/vulnerability-database/CVE-2009-1710

Severity Score

3.7

CVSS v3.1

Base Score:	3.7
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	HIGH
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	NONE
Availability (A):	NONE

CVSS v2

Base Score:	2.6
Access Vector (AV):	NETWORK
Access Complexity (AC):	HIGH
Authentication (AU):	NONE
Confidentiality (C):	PARTIAL
Integrity (I):	NONE
Availability (A):	NONE
Additional information:

Do you need more information?

Contact Us