FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2010-0048

This CVE name corresponds to:

Entered Topic
2011-01-25 bugzilla -- multiple serious vulnerabilities

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2010-0048 at cve.mitre.org

Details

Type Candidate
Name CVE-2010-0048
Phase Assigned(20091215)

Description

Use-after-free vulnerability in WebKit in Apple Safari before 4.0.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted XML document.

References

Source Reference
CONFIRM http://support.apple.com/kb/HT4070
CONFIRM http://support.apple.com/kb/HT4225
APPLE APPLE-SA-2010-03-11-1
APPLE APPLE-SA-2010-06-21-1
FEDORA FEDORA-2010-8360
FEDORA FEDORA-2010-8379
FEDORA FEDORA-2010-8423
MANDRIVA MDVSA-2011:039
SUSE SUSE-SR:2011:002
UBUNTU USN-1006-1
BID 38671
OVAL oval:org.mitre.oval:def:7135
SECTRACK 1023708
SECUNIA 41856
SECUNIA 43068
VUPEN ADV-2010-2722
VUPEN ADV-2011-0212
VUPEN ADV-2011-0552

Copyright © 2005 The MITRE Corporation.

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.