CVE-2010-1806

Use-after-free vulnerability in Apple Safari 4.x before 4.1.2 and 5.x before 5.0.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via run-in styling in an element, related to object pointers.

Affected Software

Name	Vendor	Start Version	End Version
Safari	Apple	4.0 (including)	4.0 (including)
Safari	Apple	4.0.0b (including)	4.0.0b (including)
Safari	Apple	4.0.1 (including)	4.0.1 (including)
Safari	Apple	4.0.2 (including)	4.0.2 (including)
Safari	Apple	4.0.3 (including)	4.0.3 (including)
Safari	Apple	4.0.4 (including)	4.0.4 (including)
Safari	Apple	4.0.5 (including)	4.0.5 (including)
Safari	Apple	4.1 (including)	4.1 (including)
Safari	Apple	5.0 (including)	5.0 (including)
Safari	Apple	5.0.1 (including)	5.0.1 (including)
Chromium-browser	Ubuntu	devel	*
Chromium-browser	Ubuntu	lucid	*
Chromium-browser	Ubuntu	maverick	*
Chromium-browser	Ubuntu	natty	*
Chromium-browser	Ubuntu	oneiric	*
Chromium-browser	Ubuntu	precise	*
Chromium-browser	Ubuntu	quantal	*
Chromium-browser	Ubuntu	raring	*
Qt4-x11	Ubuntu	jaunty	*
Qt4-x11	Ubuntu	karmic	*
Qt4-x11	Ubuntu	lucid	*
Webkit	Ubuntu	hardy	*
Webkit	Ubuntu	jaunty	*
Webkit	Ubuntu	karmic	*
Webkit	Ubuntu	lucid	*
Webkit	Ubuntu	maverick	*
Webkit	Ubuntu	upstream	*

NVD	https://nvd.nist.gov/vuln/detail/CVE-2010-1806
CWE	https://cwe.mitre.org/data/definitions/399.html

Affected Software

References