CVE-2009-1690
Description
Use-after-free vulnerability in WebKit, as used in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, iPhone OS for iPod touch 1.1 through 2.2.1, Google Chrome 1.0.154.53, and possibly other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) by setting an unspecified property of an HTML tag that causes child elements to be freed and later accessed when an HTML error occurs, related to recursion in certain DOM event handlers.
Risk Information
Base Score
8.8
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
8.008
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Updates for Google Chrome (66.0.3359.170) | Windows |
| Updates for Google Chrome (x64) (66.0.3359.170) | Windows |
| Updates for Google Chrome (66.0.3359.181) | Windows |
| Updates for Google Chrome (x64) (66.0.3359.181) | Windows |
| Updates for Google Chrome (67.0.3396.62) | Windows |
| Updates for Google Chrome (x64) (67.0.3396.62) | Windows |
| Updates for Google Chrome (67.0.3396.79) | Windows |
| Updates for Google Chrome (x64) (67.0.3396.79) | Windows |
| Updates for Google Chrome (67.0.3396.87) | Windows |
| Updates for Google Chrome (x64) (67.0.3396.87) | Windows |
| Google Chrome (67.0.3396.99) | Windows |
| Google Chrome (x64) (67.0.3396.99) | Windows |
| Vulnerabilities CVE-2009-1412,CVE-2009-1514,CVE-2009-1690 are affected in Chrome (x64) 1.0.154.53(x64) | Windows |
| Vulnerabilities CVE-2009-1412,CVE-2009-1514,CVE-2009-1690 are affected in Chrome 1.0.154.53 | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 3.0.1_windows | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 3.0_windows | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 3.0.2_windows | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 3.2.2_windows | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 0.8_mac | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 0.9_mac | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 1.0.3_mac | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 1.0_mac | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 1.1_mac | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 1.2_mac | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 1.3.1_mac | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 1.3.2_mac | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 1.3_mac | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 2.0.2_mac | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 2.0.4_mac | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 2.0_mac | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 3.0.2_mac | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 3.0.3_mac | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 3.0.3_windows | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 3.0.4_mac | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 3.0.4_windows | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 3.0_mac | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 3.1.1_mac | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 3.1.1_windows | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 3.1.2_mac | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 3.1.2_windows | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 3.1_mac | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 3.1_windows | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 3.2.1_mac | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 3.2.1_windows | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 3.2.3 | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 3.2.3_mac | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 3.2_windows | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 4.0_beta | Windows |
| Multiple Vulnerabilities are affected in Apple Safari for MAC 1.0 | Mac |
| Multiple Vulnerabilities are affected in Apple Safari for MAC 1.1 | Mac |
| Multiple Vulnerabilities are affected in Apple Safari for MAC 1.2 | Mac |
| Multiple Vulnerabilities are affected in Apple Safari for MAC 2.0 | Mac |
| Multiple Vulnerabilities are affected in Apple Safari for MAC 1.3 | Mac |
| Multiple Vulnerabilities are affected in Apple Safari for MAC 2.0.2 | Mac |
| Multiple Vulnerabilities are affected in Apple Safari for MAC 2.0.4 | Mac |
| Multiple Vulnerabilities are affected in Apple Safari for MAC 3.0.1 | Mac |
| Multiple Vulnerabilities are affected in Apple Safari for MAC 3.0.2 | Mac |
| Multiple Vulnerabilities are affected in Apple Safari for MAC 3.0 | Mac |
| Multiple Vulnerabilities are affected in Apple Safari for MAC 0.8 | Mac |
| Multiple Vulnerabilities are affected in Apple Safari for MAC 0.9 | Mac |
| Multiple Vulnerabilities are affected in Apple Safari for MAC 1.0.3 | Mac |
| Multiple Vulnerabilities are affected in Apple Safari for MAC 1.3.1 | Mac |
| Multiple Vulnerabilities are affected in Apple Safari for MAC 1.3.2 | Mac |
| Multiple Vulnerabilities are affected in Apple Safari for MAC 3.0.3 | Mac |
| Multiple Vulnerabilities are affected in Apple Safari for MAC 3.0.4 | Mac |
| Multiple Vulnerabilities are affected in Apple Safari for MAC 3.1 | Mac |
| Multiple Vulnerabilities are affected in Apple Safari for MAC 3.1.1 | Mac |
| Multiple Vulnerabilities are affected in Apple Safari for MAC 3.1.2 | Mac |
| Multiple Vulnerabilities are affected in Apple Safari for MAC 3.2.2b-- | Mac |
| Multiple Vulnerabilities are affected in Apple Safari for MAC 3.2 | Mac |
| Multiple Vulnerabilities are affected in Apple Safari for MAC 3.2.1 | Mac |
| Multiple Vulnerabilities are affected in Apple Safari for MAC 3.2.2 | Mac |
| Multiple Vulnerabilities are affected in Apple Safari for MAC 3.1.0-- | Mac |
| Multiple Vulnerabilities are affected in Apple Safari for MAC 3.2.3 | Mac |
| Updates for Google Chrome (66.0.3359.170) (For Ubuntu) | Linux |
| Updates for Google Chrome (66.0.3359.170) (For Debian) | Linux |
| Updates for Google Chrome (66.0.3359.181) (For Debian) | Linux |
| Updates for Google Chrome (67.0.3396.62) (For Debian) | Linux |
| Updates for Google Chrome (67.0.3396.79) (For Debian) | Linux |
| Updates for Google Chrome (67.0.3396.87) (For Debian) | Linux |
| Google Chrome (67.0.3396.99) (For Debian) | Linux |
| Vulnerabilities CVE-2009-1412,CVE-2009-1514,CVE-2009-1690 are affected in Chrome 1.0.154.53 (For Debian) | Linux |
| Updates for Google Chrome (66.0.3359.170) (For Centos) | Linux |
| Updates for Google Chrome (66.0.3359.181) (For Centos) | Linux |
| Updates for Google Chrome (67.0.3396.62) (For Centos) | Linux |
| Updates for Google Chrome (67.0.3396.79) (For Centos) | Linux |
| Updates for Google Chrome (67.0.3396.87) (For Centos) | Linux |
| Google Chrome (67.0.3396.99) (For Centos) | Linux |
| Vulnerabilities CVE-2009-1412,CVE-2009-1514,CVE-2009-1690 are affected in Chrome 1.0.154.53 (For Centos) | Linux |
| Updates for Google Chrome (66.0.3359.170) (For RedHat) | Linux |
| Updates for Google Chrome (66.0.3359.181) (For RedHat) | Linux |
| Updates for Google Chrome (67.0.3396.62) (For RedHat) | Linux |
| Updates for Google Chrome (67.0.3396.79) (For RedHat) | Linux |
| Updates for Google Chrome (67.0.3396.87) (For RedHat) | Linux |
| Google Chrome (67.0.3396.99) (For RedHat) | Linux |
| Vulnerabilities CVE-2009-1412,CVE-2009-1514,CVE-2009-1690 are affected in Chrome 1.0.154.53 (For RedHat) | Linux |
| Updates for Google Chrome (66.0.3359.170) (For Suse) | Linux |
| Updates for Google Chrome (66.0.3359.181) (For Suse) | Linux |
| Updates for Google Chrome (67.0.3396.62) (For Suse) | Linux |
| Updates for Google Chrome (67.0.3396.79) (For Suse) | Linux |
| Updates for Google Chrome (67.0.3396.87) (For Suse) | Linux |
| Google Chrome (67.0.3396.99) (For Suse) | Linux |
| Vulnerabilities CVE-2009-1412,CVE-2009-1514,CVE-2009-1690 are affected in Chrome 1.0.154.53 (For Suse) | Linux |
| Updates for Google Chrome (66.0.3359.181) (For Ubuntu) | Linux |
| Updates for Google Chrome (67.0.3396.62) (For Ubuntu) | Linux |
| Updates for Google Chrome (67.0.3396.79) (For Ubuntu) | Linux |
| Updates for Google Chrome (67.0.3396.87) (For Ubuntu) | Linux |
| Google Chrome (67.0.3396.99) (For Ubuntu) | Linux |
| Vulnerabilities CVE-2009-1412,CVE-2009-1514,CVE-2009-1690 are affected in Chrome 1.0.154.53 (For Ubuntu) | Linux |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-307513 | Updates for Google Chrome (66.0.3359.170) |
| PATCH-307515 | Updates for Google Chrome (x64) (66.0.3359.170) |
| PATCH-307534 | Updates for Google Chrome (66.0.3359.181) |
| PATCH-307535 | Updates for Google Chrome (x64) (66.0.3359.181) |
| PATCH-307607 | Updates for Google Chrome (67.0.3396.62) |
| PATCH-307608 | Updates for Google Chrome (x64) (67.0.3396.62) |
| PATCH-307641 | Updates for Google Chrome (67.0.3396.79) |
| PATCH-307644 | Updates for Google Chrome (x64) (67.0.3396.79) |
| PATCH-307660 | Updates for Google Chrome (67.0.3396.87) |
| PATCH-307662 | Updates for Google Chrome (x64) (67.0.3396.87) |
| PATCH-307715 | Google Chrome (67.0.3396.99) |
| PATCH-307716 | Google Chrome (x64) (67.0.3396.99) |
| PATCH-313162 | Google Chrome (x64) (80.0.3987.132) |
| PATCH-313161 | Google Chrome (80.0.3987.132) |
| PATCH-611604 | Apple Safari for MAC (MacOS Sonoma) (18.6) |
| PATCH-611604 | Apple Safari for MAC (MacOS Sonoma) (18.6) |
| PATCH-611604 | Apple Safari for MAC (MacOS Sonoma) (18.6) |
| PATCH-611604 | Apple Safari for MAC (MacOS Sonoma) (18.6) |
| PATCH-611604 | Apple Safari for MAC (MacOS Sonoma) (18.6) |
| PATCH-611604 | Apple Safari for MAC (MacOS Sonoma) (18.6) |
| PATCH-611604 | Apple Safari for MAC (MacOS Sonoma) (18.6) |
| PATCH-611604 | Apple Safari for MAC (MacOS Sonoma) (18.6) |
| PATCH-611604 | Apple Safari for MAC (MacOS Sonoma) (18.6) |
| PATCH-611604 | Apple Safari for MAC (MacOS Sonoma) (18.6) |
| PATCH-611604 | Apple Safari for MAC (MacOS Sonoma) (18.6) |
| PATCH-611604 | Apple Safari for MAC (MacOS Sonoma) (18.6) |
| PATCH-611604 | Apple Safari for MAC (MacOS Sonoma) (18.6) |
| PATCH-611604 | Apple Safari for MAC (MacOS Sonoma) (18.6) |
| PATCH-611604 | Apple Safari for MAC (MacOS Sonoma) (18.6) |
| PATCH-611604 | Apple Safari for MAC (MacOS Sonoma) (18.6) |
| PATCH-611604 | Apple Safari for MAC (MacOS Sonoma) (18.6) |
| PATCH-611604 | Apple Safari for MAC (MacOS Sonoma) (18.6) |
| PATCH-611604 | Apple Safari for MAC (MacOS Sonoma) (18.6) |
| PATCH-611604 | Apple Safari for MAC (MacOS Sonoma) (18.6) |
| PATCH-611604 | Apple Safari for MAC (MacOS Sonoma) (18.6) |
| PATCH-611604 | Apple Safari for MAC (MacOS Sonoma) (18.6) |
| PATCH-611604 | Apple Safari for MAC (MacOS Sonoma) (18.6) |
| PATCH-611604 | Apple Safari for MAC (MacOS Sonoma) (18.6) |
| PATCH-611604 | Apple Safari for MAC (MacOS Sonoma) (18.6) |
| PATCH-611604 | Apple Safari for MAC (MacOS Sonoma) (18.6) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234