CVE-2010-0051 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	4.3 UNKNOWN	NETWORK	MEDIUM		AV:N/AC:M/Au:N/C:P/I:N/A:N
apple	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 84%

Vendor	Product	Version
apple	safari	𝑥 ≤ 4.0.4
apple	safari	4.0
apple	safari	4.0.0b:b
apple	safari	4.0.1
apple	safari	4.0.2
apple	safari	4.0.3

𝑥

= Vulnerable software versions

Ubuntu Releases

Ubuntu Product

Codename

qt4-x11

oneiric	not-affected
natty	not-affected
maverick	not-affected
lucid	ignored
karmic	ignored
jaunty	ignored
intrepid	ignored
hardy	not-affected
dapper	ignored

webkit

oneiric	not-affected
natty	not-affected
maverick	not-affected
lucid	not-affected
karmic	Fixed 1.2.5-0ubuntu0.9.10.1 released
jaunty	ignored
intrepid	ignored
hardy	ignored
dapper	dne

Common Weakness Enumeration

CWE-20 - Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References

http://code.google.com/p/chromium/issues/detail?id=9877

http://lists.apple.com/archives/security-announce/2010//Nov/msg00003.html

http://lists.apple.com/archives/security-announce/2010/Jun/msg00003.html

http://lists.apple.com/archives/security-announce/2010/Mar/msg00000.html

http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html

http://osvdb.org/62944

http://scarybeastsecurity.blogspot.com/2009/12/generic-cross-browser-cross-domain.html

http://secunia.com/advisories/41856

http://secunia.com/advisories/42314

http://secunia.com/advisories/43068

http://support.apple.com/kb/HT4070

http://support.apple.com/kb/HT4225

http://support.apple.com/kb/HT4456

http://websec.sv.cmu.edu/css/css.pdf

http://www.mandriva.com/security/advisories?name=MDVSA-2011:039

http://www.securityfocus.com/bid/38671

http://www.securitytracker.com/id?1023708

http://www.ubuntu.com/usn/USN-1006-1

http://www.vupen.com/english/advisories/2010/2722

http://www.vupen.com/english/advisories/2011/0212

http://www.vupen.com/english/advisories/2011/0552

https://exchange.xforce.ibmcloud.com/vulnerabilities/56837

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7554

http://code.google.com/p/chromium/issues/detail?id=9877

http://lists.apple.com/archives/security-announce/2010//Nov/msg00003.html

http://lists.apple.com/archives/security-announce/2010/Jun/msg00003.html

http://lists.apple.com/archives/security-announce/2010/Mar/msg00000.html

http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html

http://osvdb.org/62944

http://scarybeastsecurity.blogspot.com/2009/12/generic-cross-browser-cross-domain.html

http://secunia.com/advisories/41856

http://secunia.com/advisories/42314

http://secunia.com/advisories/43068

http://support.apple.com/kb/HT4070

http://support.apple.com/kb/HT4225

http://support.apple.com/kb/HT4456

http://websec.sv.cmu.edu/css/css.pdf

http://www.mandriva.com/security/advisories?name=MDVSA-2011:039

http://www.securityfocus.com/bid/38671

http://www.securitytracker.com/id?1023708

http://www.ubuntu.com/usn/USN-1006-1

http://www.vupen.com/english/advisories/2010/2722

http://www.vupen.com/english/advisories/2011/0212

http://www.vupen.com/english/advisories/2011/0552

https://exchange.xforce.ibmcloud.com/vulnerabilities/56837

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7554