VYPR
← All advisories
Unrated severityNVD Advisory· Published Jun 10, 2009· Updated Apr 23, 2026

CVE-2009-1696

CVE-2009-1696

Description

WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 uses predictable random numbers in JavaScript applications, which makes it easier for remote web servers to track the behavior of a Safari user during a session.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

WebKit in Safari and iPhone OS uses predictable random numbers in JavaScript, enabling session tracking by remote servers.

Vulnerability

WebKit in Apple Safari versions before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 uses predictable random numbers in JavaScript applications [1][2]. This affects the Math.random() function or similar random number generation, making the output predictable.

Exploitation

A remote web server can exploit this by serving a malicious web page that calls JavaScript random number functions. Without any user interaction beyond visiting the page, the server can predict the random numbers generated by the browser, allowing it to track the user's session behavior across page loads or tabs.

Impact

An attacker can track the behavior of a Safari user during a session, potentially correlating actions across different web pages or tabs. This is a privacy violation, as it enables user fingerprinting and session tracking without consent. The impact is limited to information disclosure of browsing patterns.

Mitigation

Apple addressed this vulnerability in Safari 4.0 [1] and iOS 3.0 [2]. Users should update to Safari 4.0 or later on Mac OS X, and to iOS 3.0 or later on iPhone and iPod touch. No workaround is available for older versions.

References
  1. About the security content of Safari 4.0 - Apple Support
  2. About the security content of iOS 3.0 Software Update - Apple Support

AI Insight generated on May 24, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

37
  • Apple Inc./Safari35 versions
    cpe:2.3:a:apple:safari:0.8:*:mac:*:*:*:*:*+ 34 more
    • cpe:2.3:a:apple:safari:0.8:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:0.9:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:1.0.3:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:1.0:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:1.1:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:1.2:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:1.3.1:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:1.3.2:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:1.3:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:2.0.2:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:2.0.4:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:2.0:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.0.1:*:windows:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.0.2:-:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.0.2:*:windows:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.0.3:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.0.3:*:windows:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.0.4:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.0.4:*:windows:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.0:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.0:*:windows:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.1.1:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.1.1:*:windows:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.1.2:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.1.2:*:windows:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.1:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.1:*:windows:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.2.1:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.2.1:*:windows:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.2.2:*:windows:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.2.3:*:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.2:-:windows:*:*:*:*:*
    • cpe:2.3:a:apple:safari:*:*:mac:*:*:*:*:*range: <=4.0_beta
    • cpe:2.3:a:apple:safari:*:*:windows:*:*:*:*:*range: <=3.2.3
    • (no CPE)range: <4.0
  • Apple Inc./Iphone Osllm-fuzzy
    Range: 1.0-2.2.1
  • Apple Inc./iPhone OS for iPod touchllm-fuzzy
    Range: 1.1-2.2.1

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

12

News mentions

0

No linked articles in our index yet.