Unrated severityNVD Advisory· Published Jun 10, 2009· Updated Apr 23, 2026

CVE-2009-1695

Description

Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 allows remote attackers to inject arbitrary web script or HTML via vectors involving access to frame contents after completion of a page transition.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

An XSS vulnerability in WebKit, fixed in Safari 4.0 and iOS 3.0, allows script injection via frame contents during page transitions.

Vulnerability

A cross-site scripting (XSS) vulnerability exists in WebKit as used in Apple Safari before version 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1. The flaw occurs when accessing frame contents after the completion of a page transition, which can allow remote attackers to inject arbitrary web script or HTML. The affected versions are Safari prior to 4.0 and all iPhone/iPod touch OS versions up to 2.2.1 [1][2].

Exploitation

To exploit this vulnerability, an attacker needs to host a malicious web page that triggers the vulnerable code path during a page transition. The attacker must convince the victim to visit the crafted page, typically through social engineering or by embedding the malicious content in a legitimate site. No authentication or additional privileges are required; the attack is carried out remotely via standard web browsing [1][2].

Impact

Successful exploitation allows the attacker to inject and execute arbitrary JavaScript or HTML within the context of the victim's browser session. This can lead to information disclosure, session hijacking, or other actions that the victim's browser can perform on the target domain. The attacker gains the same level of access as the victim, including the ability to read cookie data, modify page content, and perform actions on behalf of the user [1][2].

Mitigation

Apple has addressed this vulnerability in Safari 4.0 (released June 8, 2009) and iOS 3.0 (released June 17, 2009). Users should update their software to the latest available versions. For Safari on Mac OS X, upgrading to Safari 4.0 eliminates the issue. For iPhone and iPod touch users, updating to iOS 3.0 resolves the vulnerability. No workaround is available for unpatched versions; the only mitigation is to apply the updates [1][2].

References

AI Insight generated on May 24, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

Apple Inc./Safari34 versions
cpe:2.3:a:apple:safari:0.8:*:mac:*:*:*:*:*+ 33 more
- cpe:2.3:a:apple:safari:0.8:*:mac:*:*:*:*:*
- cpe:2.3:a:apple:safari:0.9:*:mac:*:*:*:*:*
- cpe:2.3:a:apple:safari:1.0.3:*:mac:*:*:*:*:*
- cpe:2.3:a:apple:safari:1.0:*:mac:*:*:*:*:*
- cpe:2.3:a:apple:safari:1.1:*:mac:*:*:*:*:*
- cpe:2.3:a:apple:safari:1.2:*:mac:*:*:*:*:*
- cpe:2.3:a:apple:safari:1.3.1:*:mac:*:*:*:*:*
- cpe:2.3:a:apple:safari:1.3.2:*:mac:*:*:*:*:*
- cpe:2.3:a:apple:safari:1.3:*:mac:*:*:*:*:*
- cpe:2.3:a:apple:safari:2.0.2:*:mac:*:*:*:*:*
- cpe:2.3:a:apple:safari:2.0.4:*:mac:*:*:*:*:*
- cpe:2.3:a:apple:safari:2.0:*:mac:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.0.1:*:windows:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.0.2:-:mac:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.0.2:*:windows:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.0.3:*:mac:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.0.3:*:windows:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.0.4:*:mac:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.0.4:*:windows:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.0:*:mac:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.0:*:windows:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.1.1:*:mac:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.1.1:*:windows:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.1.2:*:mac:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.1.2:*:windows:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.1:*:mac:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.1:*:windows:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.2.1:*:mac:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.2.1:*:windows:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.2.2:*:windows:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.2.3:*:mac:*:*:*:*:*
- cpe:2.3:a:apple:safari:3.2:-:windows:*:*:*:*:*
- cpe:2.3:a:apple:safari:*:*:mac:*:*:*:*:*range: <=4.0_beta
- cpe:2.3:a:apple:safari:*:*:windows:*:*:*:*:*range: <=3.2.3
Apple Inc./Webkitllm-fuzzy
osv-coords
pkg:deb/debian/qt4-x11?arch=source
Range: < 4:4.6.2-4

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

lists.apple.com/archives/security-announce/2009/jun/msg00002.htmlnvdPatchVendor Advisory
securitytracker.com/idnvdPatch
support.apple.com/kb/HT3613nvdPatchVendor Advisory
www.vupen.com/english/advisories/2009/1522nvdPatchVendor Advisory
www.securityfocus.com/bid/35260nvdExploit
secunia.com/advisories/35379nvdVendor Advisory
lists.apple.com/archives/security-announce/2009/Jun/msg00005.htmlnvd
lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.htmlnvd
osvdb.org/54991nvd
secunia.com/advisories/37746nvd
secunia.com/advisories/43068nvd
support.apple.com/kb/HT3639nvd
www.debian.org/security/2009/dsa-1950nvd
www.securityfocus.com/bid/35328nvd
www.vupen.com/english/advisories/2009/1621nvd
www.vupen.com/english/advisories/2011/0212nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000