CVE-2010-0048

Use-after-free vulnerability in WebKit in Apple Safari before 4.0.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted XML document.
Severity
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Atk. Vector
NETWORK
Atk. Complexity
LOW
Priv. Required
NONE
Base Score
CVSS 3.x
EPSS Score
Percentile: 93%
VendorProductVersion
applesafari
𝑥
≤ 4.0.4
applesafari
4.0
applesafari
4.0
applesafari
4.0.1
applesafari
4.0.2
applesafari
4.0.3
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
qt4-x11
oneiric
not-affected
natty
not-affected
maverick
not-affected
lucid
ignored
karmic
ignored
jaunty
ignored
intrepid
ignored
hardy
not-affected
dapper
ignored
webkit
oneiric
not-affected
natty
not-affected
maverick
not-affected
lucid
not-affected
karmic
Fixed 1.2.5-0ubuntu0.9.10.1
released
jaunty
ignored
intrepid
ignored
hardy
ignored
dapper
dne
Common Weakness Enumeration
References