← back
CVE-2009-2199

CVE-2009-2199

EPSS 2.6%
Incomplete blacklist vulnerability in WebKit in Apple Safari before 4.0.3, as used on iPhone OS before 3.1, iPhone OS before 3.1.1 for iPod touch, and other platforms, allows remote attackers to spoof domain names in URLs, and possibly conduct phishing attacks, via unspecified homoglyphs.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://lists.apple.com/archives/security-announce/2009/Aug/msg00002.htmlhttp://lists.apple.com/archives/security-announce/2009/Sep/msg00001.htmlhttp://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.htmlhttp://secunia.com/advisories/36677http://secunia.com/advisories/43068http://support.apple.com/kb/HT3733http://support.apple.com/kb/HT3860http://www.securityfocus.com/bid/36026http://www.securitytracker.com/id?1022719http://www.vupen.com/english/advisories/2011/0212