Description
The XSLT implementation in WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not properly handle redirects, which allows remote attackers to read XML content from arbitrary web pages via a crafted document.
Affected products
- Apple / iphone_os
- Apple / iphone_os1.0.1 – 1.0.1
- Apple / iphone_os1.0.2 – 1.0.2
- Apple / iphone_os1.1.0 – 1.1.0
- Apple / iphone_os1.1.1 – 1.1.1
- Apple / iphone_os1.1.2 – 1.1.2
- Apple / iphone_os1.1.3 – 1.1.3
- Apple / iphone_os1.1.4 – 1.1.4
- Apple / iphone_os1.1.5 – 1.1.5
- Apple / iphone_os2.0 – 2.0
- Apple / iphone_os2.0.0 – 2.0.0
- Apple / iphone_os2.0.1 – 2.0.1
- Apple / iphone_os2.0.2 – 2.0.2
- Apple / iphone_os2.1 – 2.1
- Apple / iphone_os2.1.1 – 2.1.1
- Apple / iphone_os2.2 – 2.2
- Apple / iphone_os2.2.1 – 2.2.1
- Apple / iphone_os1.0.0 – 1.0.0
- Apple / ipod_touch
- Apple / Safari3.0.3 – 3.0.3
- Apple / Safari3.0.3b – 3.0.3b
- Apple / Safari3.0.4 – 3.0.4
- Apple / Safari3.0.4b – 3.0.4b
- Apple / Safari3.1.0 – 3.1.0
- Apple / Safari3.2.2
- Apple / Safari3.1.1 – 3.1.1
- Apple / Safari3.1.2 – 3.1.2
- Apple / Safari3.2.0 – 3.2.0
- Apple / Safari3.2.1 – 3.2.1
- Apple / Safari3.1.0b – 3.1.0b
- Apple / Safari2.0 – 2.0
- Apple / Safari2.0.0 – 2.0.0
- Apple / Safari2.0.1 – 2.0.1
- Apple / Safari2.0.2 – 2.0.2
- Apple / Safari2.0.3 – 2.0.3
- Apple / Safari2.0.3 – 2.0.3
- Apple / Safari2.0.3 – 2.0.3
- Apple / Safari2.0.3 – 2.0.3
- Apple / Safari2.0.3 – 2.0.3
- Apple / Safari2.0.4 – 2.0.4
- Apple / Safari3.0 – 3.0
- Apple / Safari3.0.0 – 3.0.0
- Apple / Safari3.0.0b – 3.0.0b
- Apple / Safari3.0.1 – 3.0.1
- Apple / Safari3.0.1 – 3.0.1
- Apple / Safari3.0.1b – 3.0.1b
- Apple / Safari3.0.2 – 3.0.2
- Apple / Safari3.0.2b – 3.0.2b
References
- VENDOR_ADVISORYhttp://support.apple.com/kb/HT3639
- VENDOR_ADVISORYhttp://secunia.com/advisories/43068
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2009/1621
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2011/0212
- MAILING_LISThttp://lists.apple.com/archives/security-announce/2009/jun/msg00002.html
- MISChttp://www.securityfocus.com/bid/35260
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2009/1522
- MAILING_LISThttp://lists.apple.com/archives/security-announce/2009/Jun/msg00005.html
- MISChttp://osvdb.org/54973
- MAILING_LISThttp://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html
- VENDOR_ADVISORYhttp://secunia.com/advisories/35379
- VENDOR_ADVISORYhttp://support.apple.com/kb/HT3613