← back
CVE-2009-1696

CVE-2009-1696

EPSS 2.3%
WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 uses predictable random numbers in JavaScript applications, which makes it easier for remote web servers to track the behavior of a Safari user during a session.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://lists.apple.com/archives/security-announce/2009/jun/msg00002.htmlhttp://lists.apple.com/archives/security-announce/2009/Jun/msg00005.htmlhttp://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.htmlhttp://osvdb.org/55027http://secunia.com/advisories/35379http://secunia.com/advisories/43068http://support.apple.com/kb/HT3613http://support.apple.com/kb/HT3639http://www.securityfocus.com/bid/35260http://www.vupen.com/english/advisories/2009/1522http://www.vupen.com/english/advisories/2009/1621http://www.vupen.com/english/advisories/2011/0212