Max CVSS | 9.3 | Min CVSS | 4.3 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2010-0047 | 9.3 |
Use-after-free vulnerability in WebKit in Apple Safari before 4.0.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors related to "HTML object element fallback content."
|
15-10-2024 - 21:35 | 15-03-2010 - 13:28 | |
CVE-2010-0048 | 9.3 |
Use-after-free vulnerability in WebKit in Apple Safari before 4.0.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted XML document.
|
15-10-2024 - 21:35 | 15-03-2010 - 13:28 | |
CVE-2010-0050 | 9.3 |
Use-after-free vulnerability in WebKit in Apple Safari before 4.0.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via an HTML document with improperly nested tags.
|
03-02-2024 - 02:24 | 15-03-2010 - 14:15 | |
CVE-2009-2285 | 4.3 |
Buffer underflow in the LZWDecodeCompat function in libtiff 3.8.2 allows context-dependent attackers to cause a denial of service (crash) via a crafted TIFF image, a different vulnerability than CVE-2008-2327.
|
03-10-2018 - 22:00 | 01-07-2009 - 13:00 | |
CVE-2010-0532 | 6.9 |
Race condition in the installation package in Apple iTunes before 9.1 on Windows allows local users to gain privileges by replacing an unspecified file with a Trojan horse. Per: http://lists.apple.com/archives/security-announce/2010//Mar/msg00003.htm
|
19-09-2017 - 01:30 | 31-03-2010 - 18:30 | |
CVE-2010-0043 | 9.3 |
ImageIO in Apple Safari before 4.0.5 and iTunes before 9.1 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted TIFF image. Per: http://lists.apple.com/archi
|
19-09-2017 - 01:30 | 15-03-2010 - 13:28 | |
CVE-2010-0051 | 4.3 |
WebKit in Apple Safari before 4.0.5 does not properly validate the cross-origin loading of stylesheets, which allows remote attackers to obtain sensitive information via a crafted HTML document. NOTE: this might overlap CVE-2010-0651. Per: http://li
|
19-09-2017 - 01:30 | 15-03-2010 - 14:15 | |
CVE-2010-0531 | 4.3 |
Apple iTunes before 9.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted MP4 podcast file.
|
19-09-2017 - 01:30 | 31-03-2010 - 18:30 | |
CVE-2010-0045 | 9.3 |
Apple Safari before 4.0.5 on Windows does not properly validate external URL schemes, which allows remote attackers to open local files and execute arbitrary code via a crafted HTML document. Per: http://lists.apple.com/archives/security-announce/201
|
19-09-2017 - 01:30 | 15-03-2010 - 13:28 | |
CVE-2010-0041 | 4.3 |
ImageIO in Apple Safari before 4.0.5 and iTunes before 9.1 on Windows does not ensure that memory access is associated with initialized memory, which allows remote attackers to obtain potentially sensitive information from process memory via a crafte
|
19-09-2017 - 01:30 | 15-03-2010 - 13:28 | |
CVE-2010-0042 | 4.3 |
ImageIO in Apple Safari before 4.0.5 and iTunes before 9.1 on Windows does not ensure that memory access is associated with initialized memory, which allows remote attackers to obtain potentially sensitive information from process memory via a crafte
|
19-09-2017 - 01:30 | 15-03-2010 - 13:28 | |
CVE-2010-0046 | 9.3 |
The Cascading Style Sheets (CSS) implementation in WebKit in Apple Safari before 4.0.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via crafted format arguments. Per: http://
|
19-09-2017 - 01:30 | 15-03-2010 - 13:28 | |
CVE-2010-0054 | 9.3 |
Use-after-free vulnerability in WebKit in Apple Safari before 4.0.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors involving HTML IMG elements. Per: http://lists.apple.com/archives/secur
|
19-09-2017 - 01:30 | 15-03-2010 - 14:15 | |
CVE-2010-0049 | 9.3 |
Use-after-free vulnerability in WebKit in Apple Safari before 4.0.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via HTML elements with right-to-left (RTL) text directionality. Per: http://lists.a
|
19-09-2017 - 01:30 | 15-03-2010 - 14:15 | |
CVE-2010-0044 | 4.3 |
PubSub in Apple Safari before 4.0.5 does not properly implement use of the Accept Cookies preference to block cookies, which makes it easier for remote web servers to track users by setting a cookie in a (1) RSS or (2) Atom feed. Per: http://lists.ap
|
19-09-2017 - 01:30 | 15-03-2010 - 13:28 | |
CVE-2010-0053 | 9.3 |
Use-after-free vulnerability in WebKit in Apple Safari before 4.0.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors related to the run-in Cascading Style Sheets (CSS) display property. Pe
|
19-09-2017 - 01:30 | 15-03-2010 - 14:15 | |
CVE-2010-0040 | 9.3 |
Integer overflow in ColorSync in Apple Safari before 4.0.5 on Windows, and iTunes before 9.1, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via an image with a crafted color profile that triggers a
|
19-09-2017 - 01:30 | 15-03-2010 - 13:28 | |
CVE-2010-0052 | 9.3 |
Use-after-free vulnerability in WebKit in Apple Safari before 4.0.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors related to "callbacks for HTML elements." Per: http://lists.apple.com/a
|
19-09-2017 - 01:30 | 15-03-2010 - 14:15 |