Sign-up

ID

VAR-200905-0173


CVE

CVE-2009-1600


TITLE

Apple Safari Vulnerabilities in which access restrictions on document objects can be bypassed

Trust: 0.8

sources: JVNDB: JVNDB-2009-003401

DESCRIPTION

Apple Safari executes DOM calls in response to a javascript: URI in the target attribute of a submit element within a form contained in an inline PDF file, which might allow remote attackers to bypass intended Adobe Acrobat JavaScript restrictions on accessing the document object, as demonstrated by a web site that permits PDF uploads by untrusted users, and therefore has a shared document.domain between the web site and this javascript: URI. NOTE: the researcher reports that Adobe's position is "a PDF file is active content.". Safari is prone to a security bypass vulnerability. Safari is Apple Computer's bundled web browser

Trust: 1.98

sources: NVD: CVE-2009-1600 // JVNDB: JVNDB-2009-003401 // BID: 79486 // VULHUB: VHN-39046

AFFECTED PRODUCTS

vendor:applemodel:safariscope: - version: -

Trust: 1.4

vendor:applemodel:safariscope:eqversion:*

Trust: 1.0

vendor:adobemodel:readerscope: - version: -

Trust: 0.8

vendor:applemodel:safari for windowsscope:eqversion:5.0.6

Trust: 0.3

sources: BID: 79486 // JVNDB: JVNDB-2009-003401 // CNNVD: CNNVD-200905-118 // NVD: CVE-2009-1600

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2009-1600
value: HIGH

Trust: 1.0

NVD: CVE-2009-1600
value: HIGH

Trust: 0.8

CNNVD: CNNVD-200905-118
value: CRITICAL

Trust: 0.6

VULHUB: VHN-39046
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2009-1600
severity: HIGH
baseScore: 9.3
vectorString: AV:N/AC:M/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 8.6
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-39046
severity: HIGH
baseScore: 9.3
vectorString: AV:N/AC:M/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 8.6
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-39046 // JVNDB: JVNDB-2009-003401 // CNNVD: CNNVD-200905-118 // NVD: CVE-2009-1600

PROBLEMTYPE DATA

problemtype:CWE-264

Trust: 1.9

sources: VULHUB: VHN-39046 // JVNDB: JVNDB-2009-003401 // NVD: CVE-2009-1600

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200905-118

TYPE

permissions and access control

Trust: 0.6

sources: CNNVD: CNNVD-200905-118

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2009-003401

PATCH
title:Top Pageurl:http://www.adobe.com/
Trust: 0.8
title:Safariurl:http://www.apple.com/safari/
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2009-003401

EXTERNAL IDS
db:NVDid:CVE-2009-1600
Trust: 2.8
db:JVNDBid:JVNDB-2009-003401
Trust: 0.8
db:BUGTRAQid:20090503 [SECNICHE WHITEPAPER ] - PDF SILENT HTTP FORM REPURPOSING ATTACKS
Trust: 0.6
db:CNNVDid:CNNVD-200905-118
Trust: 0.6
db:BIDid:79486
Trust: 0.4
db:VULHUBid:VHN-39046
Trust: 0.1
sources:
            
            
            VULHUB: VHN-39046 // 
            
            
            
            BID: 79486 // 
            
            
            
            JVNDB: JVNDB-2009-003401 // 
            
            
            
            CNNVD: CNNVD-200905-118 // 
            
            
            
            NVD: CVE-2009-1600

REFERENCES
url:http://secniche.org/papers/sns_09_03_pdf_silent_form_re_purp_attack.pdf
Trust: 2.0
url:http://www.securityfocus.com/archive/1/503183/100/0/threaded
Trust: 1.1
url:http://www.securityfocus.com/archive/1/archive/1/503183/100/0/threaded
Trust: 0.9
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-1600
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2009-1600
Trust: 0.8
sources:
            
            
            VULHUB: VHN-39046 // 
            
            
            
            BID: 79486 // 
            
            
            
            JVNDB: JVNDB-2009-003401 // 
            
            
            
            CNNVD: CNNVD-200905-118 // 
            
            
            
            NVD: CVE-2009-1600

CREDITS
Unknown
Trust: 0.3
sources:
            
            
            BID: 79486

SOURCES
db:VULHUBid:VHN-39046
db:BIDid:79486
db:JVNDBid:JVNDB-2009-003401
db:CNNVDid:CNNVD-200905-118
db:NVDid:CVE-2009-1600

LAST UPDATE DATE
2025-04-10T23:00:31.609000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-39046date:2018-10-30T00:00:00
db:BIDid:79486date:2009-05-11T00:00:00
db:JVNDBid:JVNDB-2009-003401date:2012-06-26T00:00:00
db:CNNVDid:CNNVD-200905-118date:2009-05-14T00:00:00
db:NVDid:CVE-2009-1600date:2025-04-09T00:30:58.490

SOURCES RELEASE DATE
db:VULHUBid:VHN-39046date:2009-05-11T00:00:00
db:BIDid:79486date:2009-05-11T00:00:00
db:JVNDBid:JVNDB-2009-003401date:2012-06-26T00:00:00
db:CNNVDid:CNNVD-200905-118date:2009-05-11T00:00:00
db:NVDid:CVE-2009-1600date:2009-05-11T15:30:00.547