Lucene search

[email protected]CVE-2010-1787

HistoryJul 30, 2010 - 8:30 p.m.

CVE-2010-1787

2010-07-3020:30:02

CWE-119

[email protected]

web.nvd.nist.gov

cve-2010-1787

webkit

apple safari

remote code execution

denial of service

memory corruption

application crash

svg

nvd

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

9.3

Confidence

High

EPSS

0.146

Percentile

95.8%

JSON

WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4; and webkitgtk before 1.2.6; allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a floating element in an SVG document.

Affected configurations

NVD

Node

applesafariRange≤5.0

applesafariMatch4.0

applesafariMatch4.0.0b

applesafariMatch4.0.1

applesafariMatch4.0.2

applesafariMatch4.0.3

applesafariMatch4.0.4

applesafariMatch4.0.5

applewebkit

AND

applemac_os_xMatch10.5

applemac_os_xMatch10.5.0

applemac_os_xMatch10.5.1

applemac_os_xMatch10.5.2

applemac_os_xMatch10.5.3

applemac_os_xMatch10.5.4

applemac_os_xMatch10.5.5

applemac_os_xMatch10.5.6

applemac_os_xMatch10.5.7

applemac_os_xMatch10.5.8

applemac_os_xMatch10.6.0

applemac_os_xMatch10.6.1

applemac_os_xMatch10.6.2

applemac_os_xMatch10.6.3

applemac_os_xMatch10.6.4

applemac_os_x_serverMatch10.5

applemac_os_x_serverMatch10.5.0

applemac_os_x_serverMatch10.5.1

applemac_os_x_serverMatch10.5.2

applemac_os_x_serverMatch10.5.3

applemac_os_x_serverMatch10.5.4

applemac_os_x_serverMatch10.5.5

applemac_os_x_serverMatch10.5.6

applemac_os_x_serverMatch10.5.7

applemac_os_x_serverMatch10.5.8

applemac_os_x_serverMatch10.6.0

applemac_os_x_serverMatch10.6.1

applemac_os_x_serverMatch10.6.2

applemac_os_x_serverMatch10.6.3

applemac_os_x_serverMatch10.6.4

microsoftwindows_7

microsoftwindows_vista

microsoftwindows_xpsp2

microsoftwindows_xpsp3

Node

applesafariRange≤4.1

applesafariMatch4.0

applesafariMatch4.0.0b

applesafariMatch4.0.1

applesafariMatch4.0.2

applesafariMatch4.0.3

applesafariMatch4.0.4

applesafariMatch4.0.5

applewebkit

AND

applemac_os_xMatch10.4

applemac_os_xMatch10.4.0

applemac_os_xMatch10.4.1

applemac_os_xMatch10.4.2

applemac_os_xMatch10.4.3

applemac_os_xMatch10.4.4

applemac_os_xMatch10.4.5

applemac_os_xMatch10.4.6

applemac_os_xMatch10.4.7

applemac_os_xMatch10.4.8

applemac_os_xMatch10.4.9

applemac_os_xMatch10.4.10

applemac_os_xMatch10.4.11

applemac_os_x_serverMatch10.4

applemac_os_x_serverMatch10.4.0

applemac_os_x_serverMatch10.4.1

applemac_os_x_serverMatch10.4.2

applemac_os_x_serverMatch10.4.3

applemac_os_x_serverMatch10.4.4

applemac_os_x_serverMatch10.4.5

applemac_os_x_serverMatch10.4.6

applemac_os_x_serverMatch10.4.7

applemac_os_x_serverMatch10.4.8

applemac_os_x_serverMatch10.4.9

applemac_os_x_serverMatch10.4.10

applemac_os_x_serverMatch10.4.11

VendorProductVersionCPE
applesafari4.0.4cpe:/a:apple:safari:4.0.4:::
applesafari4.0.5cpe:/a:apple:safari:4.0.5:::
applesafari4.0.1cpe:/a:apple:safari:4.0.1:::
applesafaricpe:/a:apple:safari::::
applesafari4.0.0bcpe:/a:apple:safari:4.0.0b:::
applesafari4.0.3cpe:/a:apple:safari:4.0.3:::
applesafari4.0.2cpe:/a:apple:safari:4.0.2:::
applesafari4.0cpe:/a:apple:safari:4.0:::
applewebkitcpe:/a:apple:webkit::::

Vendor	Product	Version	CPE
apple	safari	4.0.4	cpe:/a:apple:safari:4.0.4:::
apple	safari	4.0.5	cpe:/a:apple:safari:4.0.5:::
apple	safari	4.0.1	cpe:/a:apple:safari:4.0.1:::
apple	safari		cpe:/a:apple:safari::::
apple	safari	4.0.0b	cpe:/a:apple:safari:4.0.0b:::
apple	safari	4.0.3	cpe:/a:apple:safari:4.0.3:::
apple	safari	4.0.2	cpe:/a:apple:safari:4.0.2:::
apple	safari	4.0	cpe:/a:apple:safari:4.0:::
apple	webkit		cpe:/a:apple:webkit::::