Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 284151 (CVE-2009-1715)

Summary: [TRACKER] WebKit Web Inspector XSS (CVE-2009-1715)
Product: Gentoo Security Reporter: Alex Legler (RETIRED) <a3li>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: RESOLVED FIXED    
Severity: minor Keywords: Tracker
Priority: High    
Version: unspecified   
Hardware: All   
OS: Linux   
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1715
Whiteboard: B4 [ebuild]
Package list:
Runtime testing required: ---

Description Alex Legler (RETIRED) archtester gentoo-dev Security 2009-09-08 11:05:22 UTC 
CVE-2009-1715 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-1715):
  Cross-site scripting (XSS) vulnerability in Web Inspector in WebKit
  in Apple Safari before 4.0 allows user-assisted remote attackers to
  inject arbitrary web script or HTML, and read local files, via
  vectors related to script execution with incorrect privileges.
Comment 1 Chris Reffett (RETIRED) gentoo-dev Security 2013-09-12 22:10:33 UTC 
Presumably all affected versions are gone from tree. Closing as discussed with keytoaster.