CVE Vulnerabilities

CVE-2010-1786

Published: Jul 30, 2010 | Modified: Sep 19, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
9.3 HIGH
AV:N/AC:M/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Use-after-free vulnerability in WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4; and webkitgtk before 1.2.6; allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a foreignObject element in an SVG document.

Affected Software

Name Vendor Start Version End Version
Safari Apple * 5.0
Safari Apple 4.0 4.0
Safari Apple 4.0.0b 4.0.0b
Safari Apple 4.0.1 4.0.1
Safari Apple 4.0.2 4.0.2
Safari Apple 4.0.3 4.0.3
Safari Apple 4.0.4 4.0.4
Safari Apple 4.0.5 4.0.5
Webkit Apple * *

References