Lucene search
Wushi of team509ZDI-10-146HistoryAug 09, 2010 - 12:00 a.m.
Apple Webkit Anchor Tag Mouse Click Event Dispatch Remote Code Execution Vulnerability
2010-08-0900:00:00
wushi of team509
www.zerodayinitiative.com
14
0.068 Low
EPSS
Percentile
93.9%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Safari’s Webkit. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the library’s support for mouse events on a particular element. If a mouse event is dispatched to an element when one of it’s attributes is undefined, the library will dereference a memory pointer pointing to arbitrary data. Usage of this element can then lead to code execution under the context of the application.
Related
cvelist
cvelist
CVE-2010-0048
2010-03-12 20:00:00
prion
prion
Design/Logic Flaw
2010-03-15 13:28:00
nvd
nvd
CVE-2010-0048
2010-03-15 13:28:25
ubuntucve
ubuntucve
CVE-2010-0048
2010-03-15 00:00:00
securityvulns
securityvulns
cve
cve
CVE-2010-0048
2010-03-15 13:28:25
debiancve
debiancve
CVE-2010-0048
2010-03-15 13:28:00
openvas
openvas
FreeBSD Ports: bugzilla
2011-03-05 00:00:00
FreeBSD Ports: bugzilla
2011-03-05 00:00:00
Fedora Update for kdelibs FEDORA-2011-16151
2012-04-02 00:00:00
fedora
fedora
[SECURITY] Fedora 16 Update: kdelibs-4.7.3-5.fc16
2011-11-20 23:56:23
[SECURITY] Fedora 13 Update: qt-4.6.2-17.fc13
2010-05-15 20:35:23
[SECURITY] Fedora 12 Update: qt-4.6.2-8.fc12
2010-03-23 02:10:08
freebsd
freebsd
bugzilla -- multiple serious vulnerabilities
2011-01-24 00:00:00
nessus
nessus
FreeBSD : bugzilla -- multiple serious vulnerabilities (c8c927e5-2891-11e0-8f26-00151735203a)
2011-01-26 00:00:00
Fedora 16 : kdelibs-4.7.3-5.fc16 (2011-16151)
2011-11-22 00:00:00
Fedora 11 : qt-4.6.2-8.fc11 (2010-4524)
2010-07-01 00:00:00