Apple

Safari

1536 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.3

CVE-2010-3812

  • EPSS 5.48%
  • Veröffentlicht 22.11.2010 13:00:18
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Integer overflow in the Text::wholeText method in dom/Text.cpp in WebKit, as used in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.3 on Mac OS X 10.4; webkitgtk before 1.2.6; and possibly other products allows re...

5.8

CVE-2010-3813

  • EPSS 1.11%
  • Veröffentlicht 22.11.2010 13:00:18
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The WebCore::HTMLLinkElement::process function in WebCore/html/HTMLLinkElement.cpp in WebKit, as used in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.3 on Mac OS X 10.4; webkitgtk before 1.2.6; and possibly othe...

9.3

CVE-2010-3816

  • EPSS 8.09%
  • Veröffentlicht 22.11.2010 13:00:18
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.3 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via v...

9.3

CVE-2010-3817

  • EPSS 2.25%
  • Veröffentlicht 22.11.2010 13:00:18
  • Zuletzt bearbeitet 11.04.2025 00:51:21

WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.3 on Mac OS X 10.4, does not properly perform a cast of an unspecified variable during processing of Cascading Style Sheets (CSS) 3D transforms, which allow...

9.3

CVE-2010-3818

  • EPSS 8.09%
  • Veröffentlicht 22.11.2010 13:00:18
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.3 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via v...

9.3

CVE-2010-3819

  • EPSS 2.58%
  • Veröffentlicht 22.11.2010 13:00:18
  • Zuletzt bearbeitet 11.04.2025 00:51:21

WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.3 on Mac OS X 10.4, does not properly perform a cast of an unspecified variable during processing of Cascading Style Sheets (CSS) boxes, which allows remote...

9.3

CVE-2010-3820

  • EPSS 2.25%
  • Veröffentlicht 22.11.2010 13:00:18
  • Zuletzt bearbeitet 11.04.2025 00:51:21

WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.3 on Mac OS X 10.4, accesses uninitialized memory during processing of editable elements, which allows remote attackers to execute arbitrary code or cause a...

9.3

CVE-2010-3821

  • EPSS 2.42%
  • Veröffentlicht 22.11.2010 13:00:18
  • Zuletzt bearbeitet 11.04.2025 00:51:21

WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.3 on Mac OS X 10.4, does not properly handle the :first-letter pseudo-element in a Cascading Style Sheets (CSS) token sequence, which allows remote attacker...

9.3

CVE-2010-3803

  • EPSS 10.1%
  • Veröffentlicht 22.11.2010 13:00:17
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Integer overflow in WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.3 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted str...

5

CVE-2010-3804

  • EPSS 13.89%
  • Veröffentlicht 22.11.2010 13:00:17
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The JavaScript implementation in WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.3 on Mac OS X 10.4, uses a weak algorithm for generating values of random numbers, which makes it easier for remote attacke...