Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2010-1119
HistoryMar 25, 2010 - 9:00 p.m.

CVE-2010-1119

2010-03-2521:00:01
CWE-399
[email protected]
web.nvd.nist.gov
30
cve
webkit
apple safari
vulnerability
mac os x
windows
remote attackers
arbitrary code
denial of service
pwn2own
cansecwest

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.6 High

AI Score

Confidence

High

0.941 High

EPSS

Percentile

99.2%

JSON

Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, Safari before 4.1 on Mac OS X 10.4, and Safari on Apple iPhone OS allows remote attackers to execute arbitrary code or cause a denial of service (application crash), or read the SMS database or other data, via vectors related to “attribute manipulation,” as demonstrated by Vincenzo Iozzo and Ralf Philipp Weinmann during a Pwn2Own competition at CanSecWest 2010.

Affected configurations

NVD
Node
applesafariRange4.0.5
OR
applesafariMatch1.0
OR
applesafariMatch1.0beta
OR
applesafariMatch1.0beta2
OR
applesafariMatch1.0.0
OR
applesafariMatch1.0.0b1
OR
applesafariMatch1.0.0b2
OR
applesafariMatch1.0.1
OR
applesafariMatch1.0.2
OR
applesafariMatch1.0.3
OR
applesafariMatch1.0.385.8
OR
applesafariMatch1.0.385.8.1
OR
applesafariMatch1.1
OR
applesafariMatch1.1.0
OR
applesafariMatch1.1.1
OR
applesafariMatch1.2
OR
applesafariMatch1.2.0
OR
applesafariMatch1.2.1
OR
applesafariMatch1.2.2
OR
applesafariMatch1.2.3
OR
applesafariMatch1.2.4
OR
applesafariMatch1.2.5
OR
applesafariMatch1.3
OR
applesafariMatch1.3.0
OR
applesafariMatch1.3.1
OR
applesafariMatch1.3.2
OR
applesafariMatch1.3.2312.5
OR
applesafariMatch1.3.2312.6
OR
applesafariMatch2
OR
applesafariMatch2.0
OR
applesafariMatch2.0.0
OR
applesafariMatch2.0.1
OR
applesafariMatch2.0.2
OR
applesafariMatch2.0.3
OR
applesafariMatch2.0.3417.8
OR
applesafariMatch2.0.3417.9
OR
applesafariMatch2.0.3417.9.2
OR
applesafariMatch2.0.3417.9.3
OR
applesafariMatch2.0.4
OR
applesafariMatch3
OR
applesafariMatch3.0
OR
applesafariMatch3.0.0
OR
applesafariMatch3.0.0b
OR
applesafariMatch3.0.1
OR
applesafariMatch3.0.1beta
OR
applesafariMatch3.0.1b
OR
applesafariMatch3.0.2
OR
applesafariMatch3.0.2b
OR
applesafariMatch3.0.3
OR
applesafariMatch3.0.3b
OR
applesafariMatch3.0.4
OR
applesafariMatch3.0.4b
OR
applesafariMatch3.1
OR
applesafariMatch3.1.0
OR
applesafariMatch3.1.0b
OR
applesafariMatch3.1.1
OR
applesafariMatch3.1.2
OR
applesafariMatch3.2.0
OR
applesafariMatch3.2.1
OR
applesafariMatch3.2.2
OR
applesafariMatch3.2.3
OR
applesafariMatch4.0
OR
applesafariMatch4.0beta
OR
applesafariMatch4.0.0b
OR
applesafariMatch4.0.1
OR
applesafariMatch4.0.2
OR
applesafariMatch4.0.3
OR
applesafariMatch4.0.4
OR
applesafariMatch4.1
AND
applemac_os_xMatch10.5
OR
applemac_os_xMatch10.5.0
OR
applemac_os_xMatch10.5.1
OR
applemac_os_xMatch10.5.2
OR
applemac_os_xMatch10.5.3
OR
applemac_os_xMatch10.5.4
OR
applemac_os_xMatch10.5.5
OR
applemac_os_xMatch10.5.6
OR
applemac_os_xMatch10.5.7
OR
applemac_os_xMatch10.5.8
OR
applemac_os_xMatch10.6.0
OR
applemac_os_x_serverMatch10.5.0
OR
applemac_os_x_serverMatch10.5.1
OR
applemac_os_x_serverMatch10.5.2
OR
applemac_os_x_serverMatch10.5.3
OR
applemac_os_x_serverMatch10.5.4
OR
applemac_os_x_serverMatch10.5.5
OR
applemac_os_x_serverMatch10.5.6
OR
applemac_os_x_serverMatch10.5.7
OR
applemac_os_x_serverMatch10.5.8
OR
applemac_os_x_serverMatch10.6.0
OR
applemac_os_x_serverMatch10.6.1
OR
applemac_os_x_serverMatch10.6.2
OR
applemac_os_x_serverMatch10.6.3
OR
applemac_os_x_serverMatch10.6.4
OR
microsoftwindows
Node
appleiphone_osMatch2.0
OR
appleiphone_osMatch2.0.0
OR
appleiphone_osMatch2.0.1
OR
appleiphone_osMatch2.0.2
OR
appleiphone_osMatch2.1
OR
appleiphone_osMatch2.1.1
OR
appleiphone_osMatch2.2
OR
appleiphone_osMatch2.2.1
OR
appleiphone_osMatch3.0
OR
appleiphone_osMatch3.0.1
OR
appleiphone_osMatch3.1
OR
appleiphone_osMatch3.1.2
OR
appleiphone_osMatch3.1.3

Related

checkpoint_advisories 1
prion 1
nvd 1
android 1
securityvulns 3
cvelist 1
zdi 1
packetstorm 1
threatpost 1
fedora 2
openvas 4
nessus 8
checkpoint_advisories
checkpoint_advisories
Apple Safari Webkit Attribute Child Removal Code Execution (CVE-2010-1119)
2010-07-05 00:00:00
prion
prion
Design/Logic Flaw
2010-03-25 21:00:00
nvd
nvd
CVE-2010-1119
2010-03-25 21:00:01
android
android
WebKit Use-After-Free
2019-07-03 00:00:00
securityvulns
securityvulns
ZDI-10-091: Apple Webkit Attribute Child Removal Remote Code Execution Vulnerability
2010-06-08 00:00:00
Apple Webkit / Safari / Google Chrome multiple security vulnerabilities
2010-06-11 00:00:00
VUPEN Security Research - Apple Safari WebKit HTML Button Use-after-free Vulnerability (CVE-2010-1392)
2010-06-08 00:00:00
cvelist
cvelist
CVE-2010-1119
2010-03-25 20:31:00
zdi
zdi
Apple Webkit Attribute Child Removal Remote Code Execution Vulnerability
2010-06-08 00:00:00
packetstorm
packetstorm
Android 2.0 / 2.1 / 2.1.1 WebKit Use-After-Free
2011-03-14 00:00:00
threatpost
threatpost
Apple Plugs 48 Security Holes in Safari Browser
2010-06-08 13:06:29
fedora
fedora
[SECURITY] Fedora 13 Update: qt-4.6.3-8.fc13
2010-07-13 07:40:16
[SECURITY] Fedora 12 Update: qt-4.6.3-8.fc12
2010-07-13 07:43:47
openvas
openvas
Fedora Update for qt FEDORA-2010-11011
2010-07-16 00:00:00
Fedora Update for qt FEDORA-2010-11011
2010-07-16 00:00:00
Fedora Update for qt FEDORA-2010-11020
2010-07-16 00:00:00
nessus
nessus
RHEL 6 : qt (Unpatched Vulnerability)
2024-06-03 00:00:00
Apple iTunes < 9.2 Multiple Vulnerabilities (uncredentialed check)
2010-06-17 00:00:00
Apple iTunes < 9.2 Multiple Vulnerabilities (credentialed check)
2010-06-17 00:00:00

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.6 High

AI Score

Confidence

High

0.941 High

EPSS

Percentile

99.2%

JSON
Related for CVE-2010-1119
checkpoint_advisories1prion1nvd1android1securityvulns3cvelist1zdi1packetstorm1threatpost1fedora2openvas4nessus8