VYPR
← All advisories
Unrated severityNVD Advisory· Published Jun 10, 2009· Updated Apr 23, 2026

CVE-2009-1685

CVE-2009-1685

Description

Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 allows remote attackers to inject arbitrary web script or HTML by overwriting the document.implementation property of (1) an embedded document or (2) a parent document.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Cross-site scripting (XSS) in WebKit (Safari <4.0, iPhone OS ≤2.2.1) via overwriting document.implementation property.

Vulnerability

A cross-site scripting vulnerability exists in WebKit's handling of the document.implementation property. By overwriting this property in an embedded or parent document, a remote attacker can inject arbitrary web script or HTML. Affected versions include Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPod touch OS 1.1 through 2.2.1. [1][2]

Exploitation

An attacker can exploit this by crafting a malicious web page that, when visited by the victim, overwrites the document.implementation property of an embedded or parent document. The injected script then executes in the context of the victim's session. No authentication or user interaction beyond visiting the page is required.

Impact

Successful exploitation allows arbitrary script execution in the context of the affected browser or OS, potentially leading to disclosure of sensitive data, session hijacking, or other malicious actions.

Mitigation

Apple addressed this vulnerability in Safari 4.0 (released June 2009) and iOS 3.0 (released June 2009). Users should update to these or later versions. No workaround is documented. [1][2]

References
  1. About the security content of Safari 4.0 - Apple Support
  2. About the security content of iOS 3.0 Software Update - Apple Support

AI Insight generated on May 24, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

38
  • Apple Inc./Safari35 versions
    cpe:2.3:a:apple:safari:0.8:*:mac:*:*:*:*:*+ 34 more
    • cpe:2.3:a:apple:safari:0.8:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:0.9:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:1.0.3:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:1.0:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:1.1:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:1.2:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:1.3.1:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:1.3.2:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:1.3:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:2.0.2:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:2.0.4:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:2.0:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.0.1:*:windows:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.0.2:-:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.0.2:*:windows:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.0.3:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.0.3:*:windows:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.0.4:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.0.4:*:windows:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.0:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.0:*:windows:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.1.1:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.1.1:*:windows:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.1.2:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.1.2:*:windows:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.1:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.1:*:windows:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.2.1:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.2.1:*:windows:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.2.2:*:windows:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.2.3:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.2:-:windows:*:*:*:*:*
    • cpe:2.3:a:apple:safari:*:*:mac:*:*:*:*:*range: <=4.0_beta
    • cpe:2.3:a:apple:safari:*:*:windows:*:*:*:*:*range: <=3.2.3
    • (no CPE)range: <4.0
  • Apple Inc./Iphone Osllm-fuzzy
    Range: 1.0 through 2.2.1
  • Apple Inc./iPhone OS for iPod touchllm-fuzzy
    Range: 1.1 through 2.2.1
  • osv-coords
    pkg:deb/debian/qt4-x11?arch=source
    Range: < 4:4.6.2-4

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

14

News mentions

0

No linked articles in our index yet.