CVE

Id
44369  
CVE No.
CVE-2010-1785  
Status
Candidate  
Description
WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4; and webkitgtk before 1.2.6; accesses uninitialized memory during processing of the (1) :first-letter and (2) :first-line pseudo-elements in an SVG text element, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted document.  
Phase
Assigned (20100506)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
483983 44369 CVE-2010-1785 CONFIRM:http://support.apple.com/kb/HT4276  View
483984 44369 CVE-2010-1785 CONFIRM:http://support.apple.com/kb/HT4334  View
483985 44369 CVE-2010-1785 CONFIRM:http://support.apple.com/kb/HT4456  View
483986 44369 CVE-2010-1785 APPLE:APPLE-SA-2010-07-28-1  View
483987 44369 CVE-2010-1785 URL:http://lists.apple.com/archives/security-announce/2010//Jul/msg00001.html  View
483988 44369 CVE-2010-1785 APPLE:APPLE-SA-2010-09-08-1  View
483989 44369 CVE-2010-1785 URL:http://lists.apple.com/archives/security-announce/2010//Sep/msg00002.html  View
483990 44369 CVE-2010-1785 APPLE:APPLE-SA-2010-11-22-1  View
483991 44369 CVE-2010-1785 URL:http://lists.apple.com/archives/security-announce/2010//Nov/msg00003.html  View
483992 44369 CVE-2010-1785 MANDRIVA:MDVSA-2011:039  View
483993 44369 CVE-2010-1785 URL:http://www.mandriva.com/security/advisories?name=MDVSA-2011:039  View
483994 44369 CVE-2010-1785 REDHAT:RHSA-2011:0177  View
483995 44369 CVE-2010-1785 URL:http://www.redhat.com/support/errata/RHSA-2011-0177.html  View
483996 44369 CVE-2010-1785 SUSE:SUSE-SR:2010:018  View
483997 44369 CVE-2010-1785 URL:http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00000.html  View
483998 44369 CVE-2010-1785 SUSE:SUSE-SR:2011:002  View
483999 44369 CVE-2010-1785 URL:http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html  View
484000 44369 CVE-2010-1785 UBUNTU:USN-1006-1  View
484001 44369 CVE-2010-1785 URL:http://www.ubuntu.com/usn/USN-1006-1  View
484002 44369 CVE-2010-1785 BID:42020  View
484003 44369 CVE-2010-1785 URL:http://www.securityfocus.com/bid/42020  View
484004 44369 CVE-2010-1785 OVAL:oval:org.mitre.oval:def:11941  View
484005 44369 CVE-2010-1785 URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11941  View
484006 44369 CVE-2010-1785 SECUNIA:41856  View
484007 44369 CVE-2010-1785 URL:http://secunia.com/advisories/41856  View
484008 44369 CVE-2010-1785 SECUNIA:42314  View
484009 44369 CVE-2010-1785 URL:http://secunia.com/advisories/42314  View
484010 44369 CVE-2010-1785 SECUNIA:43068  View
484011 44369 CVE-2010-1785 URL:http://secunia.com/advisories/43068  View
484012 44369 CVE-2010-1785 SECUNIA:43086  View
484013 44369 CVE-2010-1785 URL:http://secunia.com/advisories/43086  View
484014 44369 CVE-2010-1785 VUPEN:ADV-2010-2722  View
484015 44369 CVE-2010-1785 URL:http://www.vupen.com/english/advisories/2010/2722  View
484016 44369 CVE-2010-1785 VUPEN:ADV-2011-0212  View
484017 44369 CVE-2010-1785 URL:http://www.vupen.com/english/advisories/2011/0212  View
484018 44369 CVE-2010-1785 VUPEN:ADV-2011-0216  View
484019 44369 CVE-2010-1785 URL:http://www.vupen.com/english/advisories/2011/0216  View
484020 44369 CVE-2010-1785 VUPEN:ADV-2011-0552  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
36075 JVNDB-2010-001855 Apple Safari の WebKit におけるヒープベースのバッファオーバーフローの脆弱性 Apple Safari の WebKit には、JavaScript の string オブジェクトに関する処理に不備があるため、ヒープベースのバッファオーバーフローの脆弱性が存在します。 CVE-2010-1789 44369 9.3 http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001855.html  View