CVE-2009-1724

Apple Safari < 4.0.2 - Cross-Site Scripting via Parent and Top Object Handling

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-1724. PoCs published by Gareth Hayes.

AI-analyzed exploit summary This exploit leverages a cross-domain scripting vulnerability in WebKit to bypass the same-origin policy. The PoC uses an iframe to manipulate the parent and top properties of the contentWindow, allowing arbitrary JavaScript execution in the context of another domain.

Description

Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari before 4.0.2, as used on iPhone OS before 3.1, iPhone OS before 3.1.1 for iPod touch, and other platforms, allows remote attackers to inject arbitrary web script or HTML via vectors related to parent and top objects.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Gareth Hayes · htmlremotemultiple

https://www.exploit-db.com/exploits/33047

View Code ZIP pw:eip

This exploit leverages a cross-domain scripting vulnerability in WebKit to bypass the same-origin policy. The PoC uses an iframe to manipulate the parent and top properties of the contentWindow, allowing arbitrary JavaScript execution in the context of another domain.

Classification

Working Poc 90%

Attack Type

Xss

Complexity

Trivial

Reliability

Reliable

Target: WebKit (Safari and other browsers using WebKit)

No auth needed

Prerequisites: Victim must visit a malicious webpage

MITRE ATT&CK

T1059.007 - JavaScript

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (14)

Core 14

Core References

Patch, Vendor Advisory x_refsource_confirm

http://support.apple.com/kb/HT3666

Patch, Vendor Advisory vendor-advisory x_refsource_apple

http://lists.apple.com/archives/security-announce/2009/Jul/msg00000.html

Exploit vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/35441

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/43068

Third Party Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2011/0212

Third Party Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2009/1827

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://osvdb.org/55738

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6208

Mailing List vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id?1022525

Mailing List vendor-advisory x_refsource_apple

http://lists.apple.com/archives/security-announce/2009/Sep/msg00001.html

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/36677

Vendor Advisory x_refsource_confirm

http://support.apple.com/kb/HT3860

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/35758

Scores

EPSS 0.0152

EPSS Percentile 81.4%

Details

CWE

CWE-79

Status published

Products (45)

apple/iphone_os 1.0.0

apple/iphone_os 1.0.1

apple/iphone_os 1.0.2

apple/iphone_os 1.1.0

apple/iphone_os 1.1.1

apple/iphone_os 1.1.2

apple/iphone_os 1.1.3

apple/iphone_os 1.1.4

apple/iphone_os 1.1.5

apple/iphone_os 2.0

... and 35 more

Published Jul 09, 2009

Tracked Since Feb 18, 2026