Apple

WebKit

258 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2010-1395

  • EPSS 1.17%
  • Published 11.06.2010 18:00:24
  • Last modified 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to inject arbitrary web script or HTML via vectors involving DOM constru...

9.3

CVE-2010-1396

  • EPSS 4.83%
  • Published 11.06.2010 18:00:24
  • Last modified 11.04.2025 00:51:21

Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vecto...

9.3

CVE-2010-1397

  • EPSS 11.25%
  • Published 11.06.2010 18:00:24
  • Last modified 11.04.2025 00:51:21

Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vecto...

4.3

CVE-2010-1390

  • EPSS 1.17%
  • Published 11.06.2010 18:00:21
  • Last modified 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to inject arbitrary web script or HTML via vectors related to improper U...

4.3

CVE-2010-1391

  • EPSS 0.41%
  • Published 11.06.2010 18:00:21
  • Last modified 11.04.2025 00:51:21

Multiple directory traversal vulnerabilities in the (a) Local Storage and (b) Web SQL database implementations in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allow remote attackers to ...

9.3

CVE-2010-1392

  • EPSS 8.59%
  • Published 11.06.2010 18:00:21
  • Last modified 11.04.2025 00:51:21

Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vecto...

4.3

CVE-2010-1388

  • EPSS 0.84%
  • Published 11.06.2010 18:00:20
  • Last modified 11.04.2025 00:51:21

WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6, and before 4.1 on Mac OS X 10.4, does not properly handle clipboard (1) drag and (2) paste operations for URLs, which allows user-assisted remote attackers to read arbitrary files via a...

4.3

CVE-2010-1389

  • EPSS 0.98%
  • Published 11.06.2010 18:00:20
  • Last modified 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows user-assisted remote attackers to inject arbitrary web script or HTML via vectors involvi...

4.3

CVE-2010-1729

Exploit
  • EPSS 0.64%
  • Published 06.05.2010 14:53:01
  • Last modified 11.04.2025 00:51:21

WebKit.dll in WebKit, as used in Safari.exe 4.531.9.1 in Apple Safari, allows remote attackers to cause a denial of service (application crash) via JavaScript that writes <marquee> sequences in an infinite loop.

5.8

CVE-2010-1126

  • EPSS 0.33%
  • Published 26.03.2010 20:30:00
  • Last modified 11.04.2025 00:51:21

The JavaScript implementation in WebKit allows remote attackers to send selected keystrokes to a form field in a hidden frame, instead of the intended form field in a visible frame, via certain calls to the focus method.