CVE-2010-3818
- EPSS 5.83%
- Veröffentlicht 22.11.2010 13:00:18
- Zuletzt bearbeitet 16.06.2026 23:23:35
Use-after-free vulnerability in WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.3 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via v...
CVE-2010-3819
- EPSS 4.45%
- Veröffentlicht 22.11.2010 13:00:18
- Zuletzt bearbeitet 16.06.2026 23:23:35
WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.3 on Mac OS X 10.4, does not properly perform a cast of an unspecified variable during processing of Cascading Style Sheets (CSS) boxes, which allows remote...
CVE-2010-3820
- EPSS 4.45%
- Veröffentlicht 22.11.2010 13:00:18
- Zuletzt bearbeitet 16.06.2026 23:23:36
WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.3 on Mac OS X 10.4, accesses uninitialized memory during processing of editable elements, which allows remote attackers to execute arbitrary code or cause a...
CVE-2010-3821
- EPSS 4.36%
- Veröffentlicht 22.11.2010 13:00:18
- Zuletzt bearbeitet 16.06.2026 23:23:36
WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.3 on Mac OS X 10.4, does not properly handle the :first-letter pseudo-element in a Cascading Style Sheets (CSS) token sequence, which allows remote attacker...
CVE-2010-3803
- EPSS 5.83%
- Veröffentlicht 22.11.2010 13:00:17
- Zuletzt bearbeitet 16.06.2026 23:23:33
Integer overflow in WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.3 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted str...
- EPSS 9.13%
- Veröffentlicht 22.11.2010 13:00:17
- Zuletzt bearbeitet 16.06.2026 23:23:34
The JavaScript implementation in WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.3 on Mac OS X 10.4, uses a weak algorithm for generating values of random numbers, which makes it easier for remote attacke...
CVE-2010-3805
- EPSS 5.86%
- Veröffentlicht 22.11.2010 13:00:17
- Zuletzt bearbeitet 16.06.2026 23:23:34
Integer underflow in WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.3 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors invo...
- EPSS 2.13%
- Veröffentlicht 19.08.2010 22:00:01
- Zuletzt bearbeitet 16.06.2026 23:18:15
page/Geolocation.cpp in WebCore in WebKit before r56188 and before 1.2.5 does not properly restrict access to the lastPosition function, which has unspecified impact and remote attack vectors, aka rdar problem 7746357.
- EPSS 2.64%
- Veröffentlicht 19.08.2010 22:00:01
- Zuletzt bearbeitet 16.06.2026 23:19:15
loader/DocumentThreadableLoader.cpp in the XMLHttpRequest implementation in WebCore in WebKit before r58409 does not properly handle credentials during a cross-origin synchronous request, which has unspecified impact and remote attack vectors, aka rd...
CVE-2010-1784
- EPSS 5.96%
- Veröffentlicht 30.07.2010 20:30:02
- Zuletzt bearbeitet 16.06.2026 23:19:19
The counters functionality in the Cascading Style Sheets (CSS) implementation in WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4; and webkitgtk before 1.2.6; allows remote attackers to ...