CVE-2010-1119

Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, Safari before 4.1 on Mac OS X 10.4, and Safari on Apple iPhone OS allows remote attackers to execute arbitrary code or cause a denial of service (application crash), or read the SMS database or other data, via vectors related to "attribute manipulation," as demonstrated by Vincenzo Iozzo and Ralf Philipp Weinmann during a Pwn2Own competition at CanSecWest 2010.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
10 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:C/I:C/A:C
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 96%
VendorProductVersion
applesafari
𝑥
≤ 4.0.5
applesafari
1.0
applesafari
1.0:beta
applesafari
1.0:beta2
applesafari
1.0.0
applesafari
1.0.0b1:b1
applesafari
1.0.0b2:b2
applesafari
1.0.1
applesafari
1.0.2
applesafari
1.0.3
applesafari
1.0.3:85.8
applesafari
1.0.3:85.8.1
applesafari
1.1
applesafari
1.1.0
applesafari
1.1.1
applesafari
1.2
applesafari
1.2.0
applesafari
1.2.1
applesafari
1.2.2
applesafari
1.2.3
applesafari
1.2.4
applesafari
1.2.5
applesafari
1.3
applesafari
1.3.0
applesafari
1.3.1
applesafari
1.3.2
applesafari
1.3.2:312.5
applesafari
1.3.2:312.6
applesafari
2.0
applesafari
2.0.0
applesafari
2.0.1
applesafari
2.0.2
applesafari
2.0.3
applesafari
2.0.3:417.8
applesafari
2.0.3:417.9
applesafari
2.0.3:417.9.2
applesafari
2.0.3:417.9.3
applesafari
2.0.4
applesafari
3.0
applesafari
3.0.0
applesafari
3.0.0b:b
applesafari
3.0.1
applesafari
3.0.1:beta
applesafari
3.0.1b:b
applesafari
3.0.2
applesafari
3.0.2b:b
applesafari
3.0.3
applesafari
3.0.3b:b
applesafari
3.0.4
applesafari
3.0.4b:b
applesafari
3.1
applesafari
3.1.0
applesafari
3.1.0b:b
applesafari
3.1.1
applesafari
3.1.2
applesafari
3.2.0
applesafari
3.2.1
applesafari
3.2.2
applesafari
3.2.3
applesafari
4.0
applesafari
4.0:beta
applesafari
4.0.0b:b
applesafari
4.0.1
applesafari
4.0.2
applesafari
4.0.3
applesafari
4.0.4
applesafari
4.1
applemac_os_x
10.5
applemac_os_x
10.5.0
applemac_os_x
10.5.1
applemac_os_x
10.5.2
applemac_os_x
10.5.3
applemac_os_x
10.5.4
applemac_os_x
10.5.5
applemac_os_x
10.5.6
applemac_os_x
10.5.7
applemac_os_x
10.5.8
applemac_os_x
10.6.0
applemac_os_x_server
10.5.0
applemac_os_x_server
10.5.1
applemac_os_x_server
10.5.2
applemac_os_x_server
10.5.3
applemac_os_x_server
10.5.4
applemac_os_x_server
10.5.5
applemac_os_x_server
10.5.6
applemac_os_x_server
10.5.7
applemac_os_x_server
10.5.8
applemac_os_x_server
10.6.0
applemac_os_x_server
10.6.1
applemac_os_x_server
10.6.2
applemac_os_x_server
10.6.3
applemac_os_x_server
10.6.4
appleiphone_os
2.0
appleiphone_os
2.0.0
appleiphone_os
2.0.1
appleiphone_os
2.0.2
appleiphone_os
2.1
appleiphone_os
2.1.1
appleiphone_os
2.2
appleiphone_os
2.2.1
appleiphone_os
3.0
appleiphone_os
3.0.1
appleiphone_os
3.1
appleiphone_os
3.1.2
appleiphone_os
3.1.3
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://dvlabs.tippingpoint.com/blog/2010/02/15/pwn2own-2010
http://lists.apple.com/archives/security-announce/2010//Jun/msg00002.html
http://lists.apple.com/archives/security-announce/2010/Jun/msg00000.html
http://lists.apple.com/archives/security-announce/2010/Jun/msg00003.html
http://news.cnet.com/8301-27080_3-20001126-245.html
http://secunia.com/advisories/40105
http://secunia.com/advisories/40196
http://securityreason.com/securityalert/8128
http://securitytracker.com/id?1024067
http://support.apple.com/kb/HT4196
http://support.apple.com/kb/HT4220
http://support.apple.com/kb/HT4225
http://twitter.com/thezdi/statuses/11001080021
http://www.securityfocus.com/bid/40620
http://www.vupen.com/english/advisories/2010/1373
http://www.vupen.com/english/advisories/2010/1512
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7037
http://dvlabs.tippingpoint.com/blog/2010/02/15/pwn2own-2010
http://lists.apple.com/archives/security-announce/2010//Jun/msg00002.html
http://lists.apple.com/archives/security-announce/2010/Jun/msg00000.html
http://lists.apple.com/archives/security-announce/2010/Jun/msg00003.html
http://news.cnet.com/8301-27080_3-20001126-245.html
http://secunia.com/advisories/40105
http://secunia.com/advisories/40196
http://securityreason.com/securityalert/8128
http://securitytracker.com/id?1024067
http://support.apple.com/kb/HT4196
http://support.apple.com/kb/HT4220
http://support.apple.com/kb/HT4225
http://twitter.com/thezdi/statuses/11001080021
http://www.securityfocus.com/bid/40620
http://www.vupen.com/english/advisories/2010/1373
http://www.vupen.com/english/advisories/2010/1512
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7037