CVE Vulnerabilities

CVE-2010-1402

Published: Jun 11, 2010 | Modified: Oct 10, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
9.3 HIGH
AV:N/AC:M/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Double free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors related to an event listener in an SVG document, related to duplicate event listeners, a timer, and an AnimateTransform object.

Affected Software

Name Vendor Start Version End Version
Safari Apple * 4.0.5
Safari Apple 4.0 4.0
Safari Apple 4.0.0b 4.0.0b
Safari Apple 4.0.1 4.0.1
Safari Apple 4.0.2 4.0.2
Safari Apple 4.0.3 4.0.3
Safari Apple 4.0.4 4.0.4
Webkit Apple * *

References