Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-2198

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2009-2198
Last Modified 18 Aug 2009 12:00:00
Published 04 Aug 2009 12:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2009-2198

Summary

Apple GarageBand before 5.1 reconfigures Safari to accept all cookies regardless of domain name, which makes it easier for remote web servers to track users.

Vulnerable Systems

Application

  • Apple Garageband 4.1.1

  • Apple Garageband 4.1.2

  • Apple Garageband 5.0

  • Apple Garageband 5.0.1

  • Apple Garageband 5.0.2


References

VUPEN - ADV-2009-2141

BID - 35926

APPLE - APPLE-SA-2009-08-03-1

XF - garageband-safari-info-disclosure(52248)

SECTRACK - 1022649

CONFIRM - http://support.apple.com/kb/HT3732

SECUNIA - 36114

OSVDB - 56738


Last Updated: 27 May 2016 10:50:48