CVE-2009-1725

by Fred · 09/07/2009

WebKit in Apple Safari before 4.0.2, as used on iPhone OS before 3.1, iPhone OS before 3.1.1 for iPod touch, and other platforms; KHTML in kdelibs in KDE; QtWebKit (aka Qt toolkit); and possibly other products do not properly handle numeric character references, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document.

Date published : 2009-07-09

http://lists.apple.com/archives/security-announce/2009/Jul/msg00000.html

http://lists.apple.com/archives/security-announce/2009/Sep/msg00001.html

CVE-2009-1725

Similar

Recent Posts

Categories

CVE-2009-1725

Share this:

Similar

Recent Posts

Categories

Tags