CVE-2010-1401
11.06.2010, 18:00
Use-after-free vulnerability in the Cascading Style Sheets (CSS) implementation in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors involving the :first-letter pseudo-element.Enginsight
| Vendor | Product | Version |
|---|---|---|
| apple | safari | 𝑥 ≤ 4.0.5 |
| apple | safari | 4.0 |
| apple | safari | 4.0.0b:b |
| apple | safari | 4.0.1 |
| apple | safari | 4.0.2 |
| apple | safari | 4.0.3 |
| apple | safari | 4.0.4 |
| apple | webkit | * |
| apple | safari | 𝑥 ≤ 4.0.5 |
| apple | safari | 4.0 |
| apple | safari | 4.0.0b:b |
| apple | safari | 4.0.1 |
| apple | safari | 4.0.2 |
| apple | safari | 4.0.3 |
| apple | safari | 4.0.4 |
| apple | webkit | * |
𝑥
= Vulnerable software versions
Ubuntu Releases
Ubuntu Product | |||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| chromium-browser |
| ||||||||||||||||
| qt4-x11 |
| ||||||||||||||||
| webkit |
|
Common Weakness Enumeration
References