CVE Vulnerabilities

CVE-2011-0166

Published: Mar 11, 2011 | Modified: Aug 17, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5.8 MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu
MEDIUM

The HTML5 drag and drop functionality in WebKit in Apple Safari before 5.0.4 allows user-assisted remote attackers to bypass the Same Origin Policy and obtain sensitive information via vectors related to the dragging of content. NOTE: this might overlap CVE-2011-0778.

Affected Software

Name Vendor Start Version End Version
Safari Apple * 5.0.3 (including)
Safari Apple 1.0 (including) 1.0 (including)
Safari Apple 1.0-beta (including) 1.0-beta (including)
Safari Apple 1.0-beta2 (including) 1.0-beta2 (including)
Safari Apple 1.0.0 (including) 1.0.0 (including)
Safari Apple 1.0.0b1 (including) 1.0.0b1 (including)
Safari Apple 1.0.0b2 (including) 1.0.0b2 (including)
Safari Apple 1.0.1 (including) 1.0.1 (including)
Safari Apple 1.0.2 (including) 1.0.2 (including)
Safari Apple 1.0.3 (including) 1.0.3 (including)
Safari Apple 1.0.3-85.8 (including) 1.0.3-85.8 (including)
Safari Apple 1.0.3-85.8.1 (including) 1.0.3-85.8.1 (including)
Safari Apple 1.1 (including) 1.1 (including)
Safari Apple 1.1.0 (including) 1.1.0 (including)
Safari Apple 1.1.1 (including) 1.1.1 (including)
Safari Apple 1.2 (including) 1.2 (including)
Safari Apple 1.2.0 (including) 1.2.0 (including)
Safari Apple 1.2.1 (including) 1.2.1 (including)
Safari Apple 1.2.2 (including) 1.2.2 (including)
Safari Apple 1.2.3 (including) 1.2.3 (including)
Safari Apple 1.2.4 (including) 1.2.4 (including)
Safari Apple 1.2.5 (including) 1.2.5 (including)
Safari Apple 1.3 (including) 1.3 (including)
Safari Apple 1.3.0 (including) 1.3.0 (including)
Safari Apple 1.3.1 (including) 1.3.1 (including)
Safari Apple 1.3.2 (including) 1.3.2 (including)
Safari Apple 1.3.2-312.5 (including) 1.3.2-312.5 (including)
Safari Apple 1.3.2-312.6 (including) 1.3.2-312.6 (including)
Safari Apple 2 (including) 2 (including)
Safari Apple 2.0 (including) 2.0 (including)
Safari Apple 2.0.0 (including) 2.0.0 (including)
Safari Apple 2.0.1 (including) 2.0.1 (including)
Safari Apple 2.0.2 (including) 2.0.2 (including)
Safari Apple 2.0.3 (including) 2.0.3 (including)
Safari Apple 2.0.3-417.8 (including) 2.0.3-417.8 (including)
Safari Apple 2.0.3-417.9 (including) 2.0.3-417.9 (including)
Safari Apple 2.0.3-417.9.2 (including) 2.0.3-417.9.2 (including)
Safari Apple 2.0.3-417.9.3 (including) 2.0.3-417.9.3 (including)
Safari Apple 2.0.4 (including) 2.0.4 (including)
Safari Apple 3 (including) 3 (including)
Safari Apple 3.0 (including) 3.0 (including)
Safari Apple 3.0.0 (including) 3.0.0 (including)
Safari Apple 3.0.0b (including) 3.0.0b (including)
Safari Apple 3.0.1 (including) 3.0.1 (including)
Safari Apple 3.0.1b (including) 3.0.1b (including)
Safari Apple 3.0.2 (including) 3.0.2 (including)
Safari Apple 3.0.2b (including) 3.0.2b (including)
Safari Apple 3.0.3 (including) 3.0.3 (including)
Safari Apple 3.0.3b (including) 3.0.3b (including)
Safari Apple 3.0.4 (including) 3.0.4 (including)
Safari Apple 3.0.4b (including) 3.0.4b (including)
Safari Apple 3.1.0 (including) 3.1.0 (including)
Safari Apple 3.1.0b (including) 3.1.0b (including)
Safari Apple 3.1.1 (including) 3.1.1 (including)
Safari Apple 3.1.2 (including) 3.1.2 (including)
Safari Apple 3.2.0 (including) 3.2.0 (including)
Safari Apple 3.2.1 (including) 3.2.1 (including)
Safari Apple 3.2.2 (including) 3.2.2 (including)
Safari Apple 4.1 (including) 4.1 (including)
Safari Apple 4.1.1 (including) 4.1.1 (including)
Safari Apple 4.1.2 (including) 4.1.2 (including)
Safari Apple 5.0 (including) 5.0 (including)
Safari Apple 5.0.1 (including) 5.0.1 (including)
Safari Apple 5.0.2 (including) 5.0.2 (including)
Webkit Apple * *
Qt4-x11 Ubuntu karmic *
Qt4-x11 Ubuntu lucid *
Qtwebkit-source Ubuntu devel *
Qtwebkit-source Ubuntu esm-apps/xenial *
Qtwebkit-source Ubuntu maverick *
Qtwebkit-source Ubuntu natty *
Qtwebkit-source Ubuntu oneiric *
Qtwebkit-source Ubuntu precise *
Qtwebkit-source Ubuntu quantal *
Qtwebkit-source Ubuntu raring *
Qtwebkit-source Ubuntu saucy *
Qtwebkit-source Ubuntu trusty *
Qtwebkit-source Ubuntu utopic *
Qtwebkit-source Ubuntu vivid *
Qtwebkit-source Ubuntu wily *
Qtwebkit-source Ubuntu xenial *
Qtwebkit-source Ubuntu yakkety *
Webkit Ubuntu hardy *
Webkit Ubuntu karmic *
Webkit Ubuntu lucid *
Webkit Ubuntu maverick *
Webkit Ubuntu natty *
Webkit Ubuntu oneiric *
Webkit Ubuntu precise *
Webkit Ubuntu quantal *
Webkit Ubuntu raring *
Webkit Ubuntu saucy *
Webkitgtk Ubuntu utopic *
Webkitgtk Ubuntu vivid *

References