CVE-2009-2196 | Vulnerability Database | Aqua Security

Unspecified vulnerability in Apple Safari 4 before 4.0.3 allows remote web servers to place an arbitrary web site in the Top Sites view, and possibly conduct phishing attacks, via unknown vectors.

Affected Software

Name	Vendor	Start Version	End Version
Mac_os_x	Apple	10.4. (including)	10.4. (including)
Mac_os_x	Apple	10.5.7 (including)	10.5.7 (including)
Mac_os_x	Apple	10.5.8 (including)	10.5.8 (including)
Mac_os_x_server	Apple	10.4.11 (including)	10.4.11 (including)
Mac_os_x_server	Apple	10.5.7 (including)	10.5.7 (including)
Mac_os_x_server	Apple	10.5.8 (including)	10.5.8 (including)
Windows_vista	Microsoft	*	*
Windows_xp	Microsoft	*	*

References

http://lists.apple.com/archives/security-announce/2009/Aug/msg00002.html
http://support.apple.com/kb/HT3733
http://www.securityfocus.com/bid/36022
http://www.securitytracker.com/id?1022718
http://lists.apple.com/archives/security-announce/2009/Aug/msg00002.html
http://support.apple.com/kb/HT3733
http://www.securityfocus.com/bid/36022
http://www.securitytracker.com/id?1022718

NVD	https://nvd.nist.gov/vuln/detail/CVE-2009-2196
CWE	https://cwe.mitre.org/data/definitions/.html