Apple

WebKit

258 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2010-1778

  • EPSS 0.2%
  • Published 30.07.2010 20:30:01
  • Last modified 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4, allows remote attackers to inject arbitrary web script or HTML via an RSS feed.

9.3

CVE-2010-1780

  • EPSS 7.06%
  • Published 30.07.2010 20:30:01
  • Last modified 11.04.2025 00:51:21

Use-after-free vulnerability in WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4; and webkitgtk before 1.2.6; allows remote attackers to execute arbitrary code or cause a denial of servi...

9.3

CVE-2010-1782

  • EPSS 7.11%
  • Published 30.07.2010 20:30:01
  • Last modified 11.04.2025 00:51:21

WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4; and webkitgtk before 1.2.6; allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and applic...

9.3

CVE-2010-1783

  • EPSS 5.36%
  • Published 30.07.2010 20:30:01
  • Last modified 11.04.2025 00:51:21

WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4; and webkitgtk before 1.2.6; does not properly handle dynamic modification of a text node, which allows remote attackers to execute arbit...

4.3

CVE-2010-2441

Exploit
  • EPSS 0.37%
  • Published 24.06.2010 17:30:01
  • Last modified 11.04.2025 00:51:21

WebKit does not properly restrict focus changes, which allows remote attackers to read keystrokes via "cross-domain IFRAME gadgets," a different vulnerability than CVE-2010-1126, CVE-2010-1422, and CVE-2010-2295.

9.3

CVE-2010-1771

  • EPSS 7.64%
  • Published 11.06.2010 19:30:23
  • Last modified 11.04.2025 00:51:21

Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vecto...

9.3

CVE-2010-1774

  • EPSS 5.28%
  • Published 11.06.2010 19:30:23
  • Last modified 11.04.2025 00:51:21

WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, accesses out-of-bounds memory during processing of HTML tables, which allows remote attackers to execute arbitrary code or cause a denial of...

4.3

CVE-2010-2264

  • EPSS 0.61%
  • Published 11.06.2010 19:30:23
  • Last modified 11.04.2025 00:51:21

The Cascading Style Sheets (CSS) implementation in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, does not properly handle the :visited pseudo-class, which allows remote attackers to obta...

9.3

CVE-2010-1761

  • EPSS 9.08%
  • Published 11.06.2010 19:30:20
  • Last modified 11.04.2025 00:51:21

Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vecto...

4.3

CVE-2010-1762

  • EPSS 0.89%
  • Published 11.06.2010 19:30:20
  • Last modified 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to inject arbitrary web script or HTML via vectors involving HTML in a T...