Vulnerability CVE-2009-1706 - CERT Civis.Net

Vulnerability Name:

CVE-2009-1706 (CCN-51225)

Assigned:

2009-06-08

Published:

2009-06-08

Updated:

2009-06-19

Summary:

The Private Browsing feature in Apple Safari before 4.0 on Windows does not remove cookies from the alternate cookie store in unspecified circumstances upon (1) disabling of the feature or (2) exit of the application, which makes it easier for remote web servers to track users via a cookie.

CVSS v3 Severity:

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): None Availibility (A): None

CVSS v2 Severity:

5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
3.7 Low (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

Vulnerability Type:

Vulnerability Consequences:

Obtain Information

References:

Source: MITRE
Type: CNA
CVE-2009-1706

Source: APPLE
Type: Patch, Vendor Advisory
APPLE-SA-2009-06-08-1

Source: OSVDB
Type: UNKNOWN
54997

Source: CCN
Type: SA35379
Apple Safari Multiple Vulnerabilities

Source: SECUNIA
Type: Vendor Advisory
35379

Source: CCN
Type: Apple Web site
About the security content of Safari 4.0

Source: CONFIRM
Type: Patch, Vendor Advisory
http://support.apple.com/kb/HT3613

Source: CCN
Type: OSVDB ID: 54997
Apple Safari Private Browsing Cookie Removal Weakness Information Disclosure

Source: BID
Type: Exploit, Patch
35260

Source: CCN
Type: BID-35260
RETIRED: Apple Safari Prior to 4.0 Multiple Security Vulnerabilities

Source: BID
Type: UNKNOWN
35346

Source: CCN
Type: BID-35346
Apple Safari for Windows Private Browsing Cookie Data Local Information Disclosure Vulnerability

Source: VUPEN
Type: Patch, Vendor Advisory
ADV-2009-1522

Source: XF
Type: UNKNOWN
safari-privatebrowsing-info-disclosure(51225)

Vulnerable Configuration:

Configuration 1:

cpe:/a:apple:safari:3.0:-:windows:*:*:*:*:*

OR cpe:/a:apple:safari:3.0.1:-:windows:*:*:*:*:*

OR cpe:/a:apple:safari:3.0.2:-:windows:*:*:*:*:*

OR cpe:/a:apple:safari:3.0.3:-:windows:*:*:*:*:*

OR cpe:/a:apple:safari:3.0.4:-:windows:*:*:*:*:*

OR cpe:/a:apple:safari:3.1:-:windows:*:*:*:*:*

OR cpe:/a:apple:safari:3.1.1:-:windows:*:*:*:*:*

OR cpe:/a:apple:safari:3.1.2:-:windows:*:*:*:*:*

OR cpe:/a:apple:safari:3.2:-:windows:*:*:*:*:*

OR cpe:/a:apple:safari:3.2.1:-:windows:*:*:*:*:*

OR cpe:/a:apple:safari:3.2.2:-:windows:*:*:*:*:*

OR cpe:/a:apple:safari:*:-:windows:*:*:*:*:* (Version <= 3.2.3)

Configuration CCN 1:

cpe:/a:apple:safari:3.0.1:*:*:*:*:*:*:*

OR cpe:/a:apple:safari:3.0.2:*:*:*:*:*:*:*

OR cpe:/a:apple:safari:3.0.3:*:*:*:*:*:*:*

OR cpe:/a:apple:safari:3.1:*:*:*:*:*:*:*

OR cpe:/a:apple:safari:3.0:*:*:*:*:*:*:*

OR cpe:/a:apple:safari:3.0.4:*:*:*:*:*:*:*

OR cpe:/a:apple:safari:3.1.1:*:*:*:*:*:*:*

OR cpe:/a:apple:safari:3.1.2:*:*:*:*:*:*:*

OR cpe:/a:apple:safari:3.2:*:*:*:*:*:*:*

OR cpe:/a:apple:safari:3.2.1:*:*:*:*:*:*:*

OR cpe:/a:curl:curl:7.17:*:*:*:*:*:*:*

OR cpe:/a:apple:safari:3.2.3:*:*:*:*:*:*:*

Denotes that component is vulnerable