Executive Summary
This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.
| Summary | |
|---|---|
| Title | webkitgtk security update |
| Informations | |||
|---|---|---|---|
| Name | RHSA-2011:0177 | First vendor Publication | 2011-01-25 |
| Vendor | RedHat | Last vendor Modification | 2011-01-25 |
| Severity (Vendor) | Moderate | Revision | 01 |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C) | |||
|---|---|---|---|
| Cvss Base Score | 10 | Attack Range | Network |
| Cvss Impact Score | 10 | Attack Complexity | Low |
| Cvss Expoit Score | 10 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| Problem Description: Updated webkitgtk packages that fix several security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64 Red Hat Enterprise Linux Desktop Optional (v. 6) - i386, x86_64 Red Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64 Red Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation Optional (v. 6) - i386, x86_64 3. Description: WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. Multiple memory corruption flaws were found in WebKit. Malicious web content could cause an application using WebKitGTK+ to crash or, potentially, execute arbitrary code with the privileges of the user running the application. (CVE-2010-1782, CVE-2010-1783, CVE-2010-1784, CVE-2010-1785, CVE-2010-1787, CVE-2010-1788, CVE-2010-1790, CVE-2010-1792, CVE-2010-1807, CVE-2010-1814, CVE-2010-3114, CVE-2010-3116, CVE-2010-3119, CVE-2010-3255, CVE-2010-3812, CVE-2010-4198) Multiple use-after-free flaws were found in WebKit. Malicious web content could cause an application using WebKitGTK+ to crash or, potentially, execute arbitrary code with the privileges of the user running the application. (CVE-2010-1780, CVE-2010-1786, CVE-2010-1793, CVE-2010-1812, CVE-2010-1815, CVE-2010-3113, CVE-2010-3257, CVE-2010-4197, CVE-2010-4204) Two array index errors, leading to out-of-bounds memory reads, were found in WebKit. Malicious web content could cause an application using WebKitGTK+ to crash. (CVE-2010-4206, CVE-2010-4577) A flaw in WebKit could allow malicious web content to trick a user into thinking they are visiting the site reported by the location bar, when the page is actually content controlled by an attacker. (CVE-2010-3115) It was found that WebKit did not correctly restrict read access to images created from the "canvas" element. Malicious web content could allow a remote attacker to bypass the same-origin policy and potentially access sensitive image data. (CVE-2010-3259) A flaw was found in the way WebKit handled DNS prefetching. Even when it was disabled, web content containing certain "link" elements could cause WebKitGTK+ to perform DNS prefetching. (CVE-2010-3813) Users of WebKitGTK+ should upgrade to these updated packages, which contain WebKitGTK+ version 1.2.6, and resolve these issues. All running applications that use WebKitGTK+ must be restarted for this update to take effect. 4. Solution: Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at http://kbase.redhat.com/faq/docs/DOC-11259 5. Bugs fixed (http://bugzilla.redhat.com/): 627366 - CVE-2010-1780 CVE-2010-1782 CVE-2010-1783 CVE-2010-1784 CVE-2010-1785 CVE-2010-1786 CVE-2010-1787 CVE-2010-1788 CVE-2010-1790 CVE-2010-1792 CVE-2010-1793 WebKit: multiple vulnerabilities in WebKitGTK 627703 - CVE-2010-1807 webkit: input validation error when parsing certain NaN values 628032 - CVE-2010-3113 webkit: memory corruption when handling SVG documents 628035 - CVE-2010-3114 webkit: bad cast with text editing 628071 - CVE-2010-3115 webkit: address bar spoofing with history bug 628076 - CVE-2010-3119 webkit: DoS due to improper Ruby support 631939 - CVE-2010-1812 webkit: use-after-free flaw in handling of selections 631946 - CVE-2010-1814 webkit: memory corruption flaw when handling form menus 631948 - CVE-2010-1815 webkit: use-after-free flaw when handling scrollbars 640353 - CVE-2010-3116 webkit: memory corruption with MIME types 640357 - CVE-2010-3257 webkit: stale pointer issue with focusing 640360 - CVE-2010-3259 webkit: cross-origin image theft 645914 - CVE-2010-3255 webkit: DoS via improper handling of counter nodes 656115 - CVE-2010-4197 WebKit: Use-after-free vulnerabiity related to text editing causes memory corruption 656118 - CVE-2010-4198 WebKit: Memory corruption due to improper handling of large text area 656126 - CVE-2010-4204 WebKit: Use-after-free vulnerability related frame object 656129 - CVE-2010-4206 WebKit: Array index error during processing of an SVG document 667022 - CVE-2010-3812 webkit: Integer overflow in WebKit's handling of Text objects 667024 - CVE-2010-3813 webkit: HTMLLinkElement ignores dnsPrefetchingEnabled setting 667025 - CVE-2010-4577 webkit: CSS Font Face Parsing Type Confusion Vulnerability |
Original Source
| Url : https://rhn.redhat.com/errata/RHSA-2011-0177.html |
CWE : Common Weakness Enumeration
| % | Id | Name |
|---|---|---|
| 42 % | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| 19 % | CWE-399 | Resource Management Errors |
| 12 % | CWE-416 | Use After Free |
| 8 % | CWE-20 | Improper Input Validation |
| 4 % | CWE-787 | Out-of-bounds Write (CWE/SANS Top 25) |
| 4 % | CWE-264 | Permissions, Privileges, and Access Controls |
| 4 % | CWE-200 | Information Exposure |
| 4 % | CWE-189 | Numeric Errors (CWE/SANS Top 25) |
| 4 % | CWE-125 | Out-of-bounds Read |
OVAL Definitions
| Definition Id: oval:org.mitre.oval:def:10964 | |||
| Oval ID: | oval:org.mitre.oval:def:10964 | ||
| Title: | use-after-free vulnerability in WebKit in Apple Safari before 5.0.1 | ||
| Description: | Use-after-free vulnerability in WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4; and webkitgtk before 1.2.6; allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors related to element focus. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-1780 | Version: | 13 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows Server 2008 | Product(s): | Apple Safari |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:11221 | |||
| Oval ID: | oval:org.mitre.oval:def:11221 | ||
| Title: | Google Chrome Image Read Access Restriction Same Origin Policy Bypass Remote Information Disclosure | ||
| Description: | WebKit, as used in Apple Safari before 4.1.3 and 5.0.x before 5.0.3, Google Chrome before 6.0.472.53, and webkitgtk before 1.2.6, does not properly restrict read access to images derived from CANVAS elements, which allows remote attackers to bypass the Same Origin Policy and obtain potentially sensitive image data via a crafted web site. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-3259 | Version: | 14 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 | Product(s): | Google Chrome |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:11577 | |||
| Oval ID: | oval:org.mitre.oval:def:11577 | ||
| Title: | Vulnerability in text-editing implementation in Google Chrome before 5.0.375.127 | ||
| Description: | The text-editing implementation in Google Chrome before 5.0.375.127, and webkitgtk before 1.2.6, does not check a node type before performing a cast, which has unspecified impact and attack vectors related to (1) DeleteSelectionCommand.cpp, (2) InsertLineBreakCommand.cpp, or (3) InsertParagraphSeparatorCommand.cpp in WebCore/editing/. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-3114 | Version: | 14 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows 7 | Product(s): | Google Chrome |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:11689 | |||
| Oval ID: | oval:org.mitre.oval:def:11689 | ||
| Title: | Integer overflow vulnerability in WebKit in Apple Safari before 5.0.3 versions | ||
| Description: | Integer overflow in the Text::wholeText method in dom/Text.cpp in WebKit, as used in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.3 on Mac OS X 10.4; webkitgtk before 1.2.6; and possibly other products allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors involving Text objects. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-3812 | Version: | 10 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP | Product(s): | Apple Safari |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:11736 | |||
| Oval ID: | oval:org.mitre.oval:def:11736 | ||
| Title: | Google Chrome Counter Node Handling Unspecified Memory Corruption | ||
| Description: | Google Chrome before 6.0.472.53 and webkitgtk before 1.2.6 do not properly handle counter nodes, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-3255 | Version: | 14 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 | Product(s): | Google Chrome |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:11766 | |||
| Oval ID: | oval:org.mitre.oval:def:11766 | ||
| Title: | The counters functionality in the Cascading Style Sheets (CSS) implementation in WebKit in Apple Safari before 5.0.1 | ||
| Description: | The counters functionality in the Cascading Style Sheets (CSS) implementation in WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4; and webkitgtk before 1.2.6; allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-1784 | Version: | 13 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows Server 2008 | Product(s): | Apple Safari |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:11777 | |||
| Oval ID: | oval:org.mitre.oval:def:11777 | ||
| Title: | WebKit in Apple Safari before 5.0.1 related to reentrancy issue. | ||
| Description: | WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4; and webkitgtk before 1.2.6; does not properly handle just-in-time (JIT) compiled JavaScript stubs, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted HTML document, related to a "reentrancy issue." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-1790 | Version: | 13 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows Server 2008 | Product(s): | Apple Safari |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:11820 | |||
| Oval ID: | oval:org.mitre.oval:def:11820 | ||
| Title: | WebKit in Apple Safari before 5.0.1 Denial of Service vulnerability | ||
| Description: | WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4; and webkitgtk before 1.2.6; does not properly handle dynamic modification of a text node, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-1783 | Version: | 13 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows Server 2008 | Product(s): | Apple Safari |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:11837 | |||
| Oval ID: | oval:org.mitre.oval:def:11837 | ||
| Title: | Use-after-free vulnerability in WebKit in Apple Safari before 5.0.1 related to foreignObject element in an SVG document. | ||
| Description: | Use-after-free vulnerability in WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4; and webkitgtk before 1.2.6; allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a foreignObject element in an SVG document. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-1786 | Version: | 13 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows Server 2008 | Product(s): | Apple Safari |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:11877 | |||
| Oval ID: | oval:org.mitre.oval:def:11877 | ||
| Title: | WebKit in Apple Safari before 5.0.1 related to a floating element in an SVG document. | ||
| Description: | WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4; and webkitgtk before 1.2.6; allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a floating element in an SVG document. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-1787 | Version: | 13 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows Server 2008 | Product(s): | Apple Safari |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:11898 | |||
| Oval ID: | oval:org.mitre.oval:def:11898 | ||
| Title: | WebKit in Apple Safari before 5.0.1 related to crafted regular expression. | ||
| Description: | WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4; and webkitgtk before 1.2.6; allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted regular expression. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-1792 | Version: | 13 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows Server 2008 | Product(s): | Apple Safari |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:11901 | |||
| Oval ID: | oval:org.mitre.oval:def:11901 | ||
| Title: | Vulnerability in handling of SVG documents in Google Chrome before 5.0.375.127 | ||
| Description: | Google Chrome before 5.0.375.127, and webkitgtk before 1.2.5, does not properly handle SVG documents, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors related to state changes when using DeleteButtonController. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-3113 | Version: | 14 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows 7 | Product(s): | Google Chrome |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:11909 | |||
| Oval ID: | oval:org.mitre.oval:def:11909 | ||
| Title: | Vulnerability while processing MIME types in Google Chrome before 5.0.375.127 | ||
| Description: | Multiple use-after-free vulnerabilities in WebKit, as used in Apple Safari before 4.1.3 and 5.0.x before 5.0.3, Google Chrome before 5.0.375.127, and webkitgtk before 1.2.6, allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors related to improper handling of MIME types by plug-ins. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-3116 | Version: | 14 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows 7 | Product(s): | Google Chrome |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:11923 | |||
| Oval ID: | oval:org.mitre.oval:def:11923 | ||
| Title: | Multiple use-after-free vulnerabilities in WebKit in Apple Safari before 5.0.1 related to font-face or use element in an SVG document. | ||
| Description: | Multiple use-after-free vulnerabilities in WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4; and webkitgtk before 1.2.6; allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via a (1) font-face or (2) use element in an SVG document. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-1793 | Version: | 13 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows Server 2008 | Product(s): | Apple Safari |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:11935 | |||
| Oval ID: | oval:org.mitre.oval:def:11935 | ||
| Title: | WebKit in Apple Safari before 5.0.1 denial of service vulnerability related to the rendering of an inline element | ||
| Description: | WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4; and webkitgtk before 1.2.6; allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to the rendering of an inline element. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-1782 | Version: | 13 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows Server 2008 | Product(s): | Apple Safari |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:11941 | |||
| Oval ID: | oval:org.mitre.oval:def:11941 | ||
| Title: | WebKit in Apple Safari before 5.0.1 memory accesses vulnerability | ||
| Description: | WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4; and webkitgtk before 1.2.6; accesses uninitialized memory during processing of the (1) :first-letter and (2) :first-line pseudo-elements in an SVG text element, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted document. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-1785 | Version: | 13 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows Server 2008 | Product(s): | Apple Safari |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:11949 | |||
| Oval ID: | oval:org.mitre.oval:def:11949 | ||
| Title: | Denial of Service vulnerability in Google Chrome before 7.0.517.44 via unknown vectors | ||
| Description: | Array index error in the FEBlend::apply function in WebCore/platform/graphics/filters/FEBlend.cpp in WebKit, as used in Google Chrome before 7.0.517.44, webkitgtk before 1.2.6, and other products, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted SVG document, related to effects in the application of filters. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-4206 | Version: | 14 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows 7 | Product(s): | Google Chrome |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:11953 | |||
| Oval ID: | oval:org.mitre.oval:def:11953 | ||
| Title: | Vulnerability in history feature implementation in Google Chrome before 5.0.375.127 | ||
| Description: | Google Chrome before 5.0.375.127, and webkitgtk before 1.2.6, does not properly implement the history feature, which might allow remote attackers to spoof the address bar via unspecified vectors. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-3115 | Version: | 14 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows 7 | Product(s): | Google Chrome |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:11962 | |||
| Oval ID: | oval:org.mitre.oval:def:11962 | ||
| Title: | WebKit in Apple Safari before 5.0.1 related to a use element in an SVG document. | ||
| Description: | WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4; and webkitgtk before 1.2.6; allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a use element in an SVG document. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-1788 | Version: | 13 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows Server 2008 | Product(s): | Apple Safari |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:11964 | |||
| Oval ID: | oval:org.mitre.oval:def:11964 | ||
| Title: | Webkit Floating Point Datatype Remote Code Execution Vulnerability | ||
| Description: | WebKit in Apple Safari 4.x before 4.1.2 and 5.x before 5.0.2; Android before 2.2; and webkitgtk before 1.2.6; does not properly validate floating-point data, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted HTML document, related to non-standard NaN representation. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-1807 | Version: | 8 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows Server 2008 | Product(s): | Apple Safari |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:12107 | |||
| Oval ID: | oval:org.mitre.oval:def:12107 | ||
| Title: | Vulnerability in Ruby language support in Google Chrome before 5.0.375.127 | ||
| Description: | Google Chrome before 5.0.375.127 and webkitgtk before 1.2.6 do not properly support the Ruby language, which allows attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-3119 | Version: | 14 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows 7 | Product(s): | Google Chrome |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:12138 | |||
| Oval ID: | oval:org.mitre.oval:def:12138 | ||
| Title: | Google Chrome Focus Handling Stale Pointer Remote DoS | ||
| Description: | Use-after-free vulnerability in WebKit, as used in Apple Safari before 4.1.3 and 5.0.x before 5.0.3, Google Chrome before 6.0.472.53, and webkitgtk before 1.2.6, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors involving element focus. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-3257 | Version: | 14 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 | Product(s): | Google Chrome |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:12157 | |||
| Oval ID: | oval:org.mitre.oval:def:12157 | ||
| Title: | Vulnerability in Google Chrome before 7.0.517.44 via a crafted HTML document | ||
| Description: | WebKit, as used in Google Chrome before 7.0.517.44, webkitgtk before 1.2.6, and other products, does not properly handle large text areas, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted HTML document. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-4198 | Version: | 14 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows 7 | Product(s): | Google Chrome |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:12174 | |||
| Oval ID: | oval:org.mitre.oval:def:12174 | ||
| Title: | Denial of Service vulnerability in Google Chrome before 7.0.517.44 via unknown vectors | ||
| Description: | WebKit, as used in Google Chrome before 7.0.517.44, webkitgtk before 1.2.6, and other products, accesses a frame object after this object has been destroyed, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-4204 | Version: | 14 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows 7 | Product(s): | Google Chrome |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:12266 | |||
| Oval ID: | oval:org.mitre.oval:def:12266 | ||
| Title: | Use-after-free vulnerability in Google Chrome before 7.0.517.44 via vectors involving text editing | ||
| Description: | Use-after-free vulnerability in WebKit, as used in Google Chrome before 7.0.517.44, webkitgtk before 1.2.6, and other products, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving text editing. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-4197 | Version: | 14 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP | Product(s): | Google Chrome |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:12293 | |||
| Oval ID: | oval:org.mitre.oval:def:12293 | ||
| Title: | Vulnerability in WebKit in Apple Safari before 5.0.3 versions | ||
| Description: | The WebCore::HTMLLinkElement::process function in WebCore/html/HTMLLinkElement.cpp in WebKit, as used in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.3 on Mac OS X 10.4; webkitgtk before 1.2.6; and possibly other products does not verify whether DNS prefetching is enabled when processing an HTML LINK element, which allows remote attackers to bypass intended access restrictions, as demonstrated by an HTML e-mail message that uses a LINK element for X-Confirm-Reading-To functionality. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-3813 | Version: | 10 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP | Product(s): | Apple Safari |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:13953 | |||
| Oval ID: | oval:org.mitre.oval:def:13953 | ||
| Title: | The CSSParser::parseFontFaceSrc function in WebCore/css/CSSParser.cpp in WebKit, as used in Google Chrome before 8.0.552.224, Chrome OS before 8.0.552.343, webkitgtk before 1.2.6, and other products does not properly parse Cascading Style Sheets (CSS) token sequences, which allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted local font, related to "Type Confusion." | ||
| Description: | The CSSParser::parseFontFaceSrc function in WebCore/css/CSSParser.cpp in WebKit, as used in Google Chrome before 8.0.552.224, Chrome OS before 8.0.552.343, webkitgtk before 1.2.6, and other products does not properly parse Cascading Style Sheets (CSS) token sequences, which allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted local font, related to "Type Confusion." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-4577 | Version: | 15 |
| Platform(s): | Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000 | Product(s): | Google Chrome |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:21433 | |||
| Oval ID: | oval:org.mitre.oval:def:21433 | ||
| Title: | RHSA-2011:0177: webkitgtk security update (Moderate) | ||
| Description: | The CSSParser::parseFontFaceSrc function in WebCore/css/CSSParser.cpp in WebKit, as used in Google Chrome before 8.0.552.224, Chrome OS before 8.0.552.343, webkitgtk before 1.2.6, and other products does not properly parse Cascading Style Sheets (CSS) token sequences, which allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted local font, related to "Type Confusion." | ||
| Family: | unix | Class: | patch |
| Reference(s): | RHSA-2011:0177-01 CVE-2010-1780 CVE-2010-1782 CVE-2010-1783 CVE-2010-1784 CVE-2010-1785 CVE-2010-1786 CVE-2010-1787 CVE-2010-1788 CVE-2010-1790 CVE-2010-1792 CVE-2010-1793 CVE-2010-1807 CVE-2010-1812 CVE-2010-1814 CVE-2010-1815 CVE-2010-3113 CVE-2010-3114 CVE-2010-3115 CVE-2010-3116 CVE-2010-3119 CVE-2010-3255 CVE-2010-3257 CVE-2010-3259 CVE-2010-3812 CVE-2010-3813 CVE-2010-4197 CVE-2010-4198 CVE-2010-4204 CVE-2010-4206 CVE-2010-4577 | Version: | 393 |
| Platform(s): | Red Hat Enterprise Linux 6 | Product(s): | webkitgtk |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:23285 | |||
| Oval ID: | oval:org.mitre.oval:def:23285 | ||
| Title: | ELSA-2011:0177: webkitgtk security update (Moderate) | ||
| Description: | The CSSParser::parseFontFaceSrc function in WebCore/css/CSSParser.cpp in WebKit, as used in Google Chrome before 8.0.552.224, Chrome OS before 8.0.552.343, webkitgtk before 1.2.6, and other products does not properly parse Cascading Style Sheets (CSS) token sequences, which allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted local font, related to "Type Confusion." | ||
| Family: | unix | Class: | patch |
| Reference(s): | ELSA-2011:0177-01 CVE-2010-1780 CVE-2010-1782 CVE-2010-1783 CVE-2010-1784 CVE-2010-1785 CVE-2010-1786 CVE-2010-1787 CVE-2010-1788 CVE-2010-1790 CVE-2010-1792 CVE-2010-1793 CVE-2010-1807 CVE-2010-1812 CVE-2010-1814 CVE-2010-1815 CVE-2010-3113 CVE-2010-3114 CVE-2010-3115 CVE-2010-3116 CVE-2010-3119 CVE-2010-3255 CVE-2010-3257 CVE-2010-3259 CVE-2010-3812 CVE-2010-3813 CVE-2010-4197 CVE-2010-4198 CVE-2010-4204 CVE-2010-4206 CVE-2010-4577 | Version: | 125 |
| Platform(s): | Oracle Linux 6 | Product(s): | webkitgtk |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:27757 | |||
| Oval ID: | oval:org.mitre.oval:def:27757 | ||
| Title: | DEPRECATED: ELSA-2011-0177 -- webkitgtk security update (moderate) | ||
| Description: | [1.2.6-2] - Added fix for js regression [1.2.6-1] - Update to 1.2.6 | ||
| Family: | unix | Class: | patch |
| Reference(s): | ELSA-2011-0177 CVE-2010-3255 CVE-2010-3257 CVE-2010-3259 CVE-2010-3812 CVE-2010-3813 CVE-2010-1780 CVE-2010-1782 CVE-2010-1783 CVE-2010-1784 CVE-2010-1785 CVE-2010-1786 CVE-2010-1787 CVE-2010-1788 CVE-2010-1790 CVE-2010-1792 CVE-2010-1793 CVE-2010-1807 CVE-2010-1812 CVE-2010-1814 CVE-2010-1815 CVE-2010-3113 CVE-2010-3114 CVE-2010-3115 CVE-2010-3116 CVE-2010-3119 CVE-2010-4197 CVE-2010-4198 CVE-2010-4204 CVE-2010-4206 CVE-2010-4577 | Version: | 4 |
| Platform(s): | Oracle Linux 6 | Product(s): | webkitgtk |
| Definition Synopsis: | |||
CPE : Common Platform Enumeration
ExploitDB Exploits
| id | Description |
|---|---|
| 2012-11-01 | Konqueror 4.7.3 Memory Corruption |
| 2010-11-15 | Android 2.0/2.1 Use-After-Free Remote Code Execution on Webkit |
| 2010-11-05 | Android 2.0-2.1 Reverse Shell Exploit |
OpenVAS Exploits
| Date | Description |
|---|---|
| 2012-06-05 | Name : RedHat Update for webkitgtk RHSA-2011:0177-01 File : nvt/gb_RHSA-2011_0177-01_webkitgtk.nasl |
| 2011-08-27 | Name : Ubuntu Update for webkit USN-1195-1 File : nvt/gb_ubuntu_USN_1195_1.nasl |
| 2011-05-12 | Name : Debian Security Advisory DSA 2188-1 (webkit) File : nvt/deb_2188_1.nasl |
| 2011-03-09 | Name : Gentoo Security Advisory GLSA 201012-01 (chromium) File : nvt/glsa_201012_01.nasl |
| 2011-03-07 | Name : Mandriva Update for webkit MDVSA-2011:039 (webkit) File : nvt/gb_mandriva_MDVSA_2011_039.nasl |
| 2011-02-18 | Name : Fedora Update for webkitgtk FEDORA-2011-1224 File : nvt/gb_fedora_2011_1224_webkitgtk_fc13.nasl |
| 2011-01-24 | Name : FreeBSD Ports: webkit-gtk2 File : nvt/freebsd_webkit-gtk22.nasl |
| 2011-01-11 | Name : Fedora Update for webkitgtk FEDORA-2011-0121 File : nvt/gb_fedora_2011_0121_webkitgtk_fc13.nasl |
| 2010-12-27 | Name : Google Chrome multiple vulnerabilities - Dec 10(Linux) File : nvt/gb_google_chrome_mult_vuln_dec10_lin.nasl |
| 2010-12-27 | Name : Google Chrome multiple vulnerabilities - Dec 10(Windows) File : nvt/gb_google_chrome_mult_vuln_dec10_win.nasl |
| 2010-11-23 | Name : Apple Safari Webkit Multiple Vulnerabilities - Nov10 File : nvt/gb_apple_safari_webkit_mult_vuln_nov10.nasl |
| 2010-11-18 | Name : Google Chrome multiple vulnerabilities - November 10(Linux) File : nvt/gb_google_chrome_mult_vuln_nov10_lin.nasl |
| 2010-11-18 | Name : Google Chrome multiple vulnerabilities - November 10(Windows) File : nvt/gb_google_chrome_mult_vuln_nov10_win.nasl |
| 2010-11-17 | Name : FreeBSD Ports: webkit-gtk2 File : nvt/freebsd_webkit-gtk21.nasl |
| 2010-10-22 | Name : Ubuntu Update for webkit vulnerabilities USN-1006-1 File : nvt/gb_ubuntu_USN_1006_1.nasl |
| 2010-10-22 | Name : Fedora Update for webkitgtk FEDORA-2010-15957 File : nvt/gb_fedora_2010_15957_webkitgtk_fc13.nasl |
| 2010-10-22 | Name : Fedora Update for webkitgtk FEDORA-2010-15982 File : nvt/gb_fedora_2010_15982_webkitgtk_fc12.nasl |
| 2010-10-10 | Name : FreeBSD Ports: webkit-gtk2 File : nvt/freebsd_webkit-gtk20.nasl |
| 2010-09-22 | Name : Fedora Update for webkitgtk FEDORA-2010-14419 File : nvt/gb_fedora_2010_14419_webkitgtk_fc12.nasl |
| 2010-09-22 | Name : Fedora Update for webkitgtk FEDORA-2010-14409 File : nvt/gb_fedora_2010_14409_webkitgtk_fc13.nasl |
| 2010-09-21 | Name : Google Chrome multiple vulnerabilities (Windows) Sep10 File : nvt/gb_google_chrome_mult_vuln_sep10_win.nasl |
| 2010-09-21 | Name : Google Chrome multiple vulnerabilities (Linux) File : nvt/gb_google_chrome_mult_vuln_sep10_lin.nasl |
| 2010-09-15 | Name : Apple Safari Multiple Vulnerabilities - Sep10 File : nvt/gb_apple_safari_mult_vuln_sep10.nasl |
| 2010-08-26 | Name : Google Chrome multiple vulnerabilities - (Aug10) File : nvt/secpod_google_chrome_mult_vuln_aug10.nasl |
| 2010-08-02 | Name : Apple Safari Multiple Vulnerabilities - July 10 File : nvt/secpod_apple_safari_mult_vuln_jul10.nasl |
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 70105 | Google Chrome CSS Token Sequence Out-of-bounds Read Remote DoS Google Chrome contains a flaw that may allow a remote denial of service. The issue is triggered when the program fails to properly parse CSS token sequences, allowing a remote attacker to cause an out-of-bounds read denial of service via unspecified vectors. |
| 69434 | Apple Safari WebKit HTML Link Element DNS Prefetch Setting Bypass Apple Safari contains a flaw related to the WebKit's HTML Link Element. The issue is triggered when WebKit encounters an HTML Link Element that requests DNS prefetching. This will bypass any prefetching preference that has been set, and may result in undesired requests to remote servers. |
| 69433 | Apple Safari WebKit wholeText Method Size Calculation Overflow Apple WebKit in Apple Safari before 5.0.3 on Windows 7, Windows Vista, Windows XP SP2 or later, Mac OS X v10.5.8, Mac OS X Server v10.5.8, Mac OS X v10.6.4 or later, and Apple WebKit in Apple Safari before 4.1.3 on Mac OS X v10.4.11 and Mac OS X Server v10.4.11 is prone to an overflow condition. The program fails to properly sanitize user-supplied input resulting in an integer overflow while handling Text objects. Visiting a specially crafted website a remote attacker can potentially cause an unexpected application termination or arbitrary code execution. |
| 69172 | Google Chrome SVG Document Out-of-bounds Array Index Memory Access DoS Google Chrome contains a flaw that may allow a remote denial of service. The issue is triggered when the program accesses memory in an out-of-bounds array index while processing an SVG document, allowing a context-dependent attacker to cause a denial of service or possibly have other unspecified impact. |
| 69170 | Google Chrome Destroyed Frame Object Access Remote DoS Google Chrome contains a flaw that may allow a remote denial of service. The issue is triggered when the program accesses a frame object after it has been destroyed, allowing a context-dependent attacker to cause a denial of service or possibly have other unspecified impact. |
| 69164 | Google Chrome Crafted HTML Document Text Area Handling Memory Corruption A memory corruption flaw exists in Google Chrome. The program fails to sanitize user-supplied input when processing large text areas, resulting in memory corruption. With a specially crafted HTML document, a context-dependent attacker can cause a denial of service, or possibly have other unspecified impact. |
| 69163 | Google Chrome Text Editing Use-after-free Remote DoS Google Chrome contains a flaw that may allow a remote denial of service. The issue is triggered when a use-after-free error related to text editing is exploited to cause a denial of service. |
| 67962 | Apple Safari WebKit Floating Point Data Crafted HTML Document Handling Arbitr... Apple Safari WebKit contains an input validation flaw related to WebKit's handling of floating point data types. The issue is triggered when visiting a maliciously crafted website. This may allow a context-dependent attacker to execute arbitrary code via a crafted HTML document. |
| 67933 | Apple iOS WebKit on iPhone / iPod Scrollbar Use-after-free Arbitrary Code Exe... |
| 67932 | Apple iOS WebKit on iPhone / iPod Menu Arbitrary Code Execution |
| 67930 | Apple iOS WebKit on iPhone / iPod Selections Use-after-free Arbitrary Code Ex... |
| 67867 | Google Chrome Image Read Access Restriction Same Origin Policy Bypass Remote ... |
| 67865 | Google Chrome Focus Handling Stale Pointer Memory Corruption |
| 67863 | Google Chrome Counter Node Handling Unspecified Memory Corruption |
| 67466 | Google Chrome Ruby Support Weakness Memory Corruption DoS |
| 67462 | Google Chrome MIME Type Processing Weakness Memory Corruption DoS |
| 67461 | Google Chrome History Feature Address Bar Unspecified Spoofing Weakness |
| 67460 | Google Chrome Text Editing Implementation Unspecified Casting Issue |
| 67459 | Google Chrome SVG Document Handling Memory Corruption DoS |
| 66857 | Apple Safari WebKit SVG Document Multiple Element Use-after-free Arbitrary Co... Apple Safari WebKit contains a use-after-free flaw related to WebKit's handling of "font-face" and "use" elements in SVG documents. The issue is triggered when visiting a maliciously crafted website. This may allow a context-dependent attacker to execute arbitrary code. |
| 66856 | Apple Safari WebKit Crafted Regular Expression Arbitrary Code Execution Apple Safari WebKit contains a memory corruption flaw related to WebKit's handling of regular expressions. The issue is triggered when visiting a maliciously crafted website. This may allow a context-dependent attacker to execute arbitrary code. |
| 66854 | Apple Safari WebKit JIT Compiled JavaScript Stub Reentrancy Issue Arbitrary C... Apple Safari WebKit contains a reentrancy issue related to the WebKit's handling of just-in-time compiled JavaScript stubs. The issue is triggered when visiting a maliciously crafted website. This may allow a context-dependent attacker to execute arbitrary code. |
| 66852 | Apple Safari Webkit SVG Document Use Element Arbitrary Code Execution Apple Safari Webkit contains a memory corruption flaw related to WebKit's handling of 'use' elements in SVG documents. The issue is triggered when visiting a maliciously crafted website. This may allow a context-dependent attacker to execute arbitrary code. |
| 66851 | Apple Safari WebKit SVG Document Floating Element Arbitrary Code Execution Apple Safari WebKit contains a memory corruption flaw related to WebKit's handling of floating elements in SVG documents. The issue is triggered when visiting a maliciously crafted website. This may allow a context-dependent attacker to execute arbitrary code. |
| 66850 | Apple Safari WebKit SVG Document foreignObject Element Use-after-free Arbitra... Apple Safari WebKit contains a use-after-free flaw related to WebKit's handling of foreignObject elements in SVG documents. The issue is triggered when visiting a maliciously crafted website. This may allow a context-dependent attacker to execute arbitrary code. |
| 66849 | Apple Safari WebKit SVG Text Multiple Pseudo-elements Crafted Document Arbitr... Apple Safari WebKit contains an uninitialized memory access flaw related to WebKit's handling of the :first-letter and :first-line pseudo-elements in SVG text elements. The issue is triggered when visiting a maliciously crafted website. This may allow a context-dependent attacker to execute arbitrary code. |
| 66848 | Apple Safari WebKit CSS Implementation Counters Functionality Crafted HTML Do... Apple Safari WebKit contains a memory corruption flaw related to WebKit's handling of CSS counters. The issue is triggered when visiting a maliciously crafted website. This may allow a context-dependent attacker to execute arbitrary code via a crafted HTML document. |
| 66847 | Apple Safari WebKit Text Node Dynamic Modification Arbitrary Code Execution Apple Safari WebKit contains a memory corruption flaw related to WebKit's handling of dynamic modifications to text nodes. The issue is triggered when visiting a maliciously crafted website. This may allow a context-dependent attacker to execute arbitrary code via a crafted HTML document. |
| 66846 | Apple Safari WebKit Inline Element Rendering Arbitrary Code Execution Apple Safari WebKit contains a memory corruption flaw related to WebKit's rendering of inline elements. The issue is triggered when visiting a maliciously crafted website. This may allow a context-dependent attacker to execute arbitrary code. |
| 66845 | Apple Safari WebKit Element Focus Use-after-free Arbitrary Code Execution Apple Safari WebKit contains a use-after-free flaw related to WebKit's handling of element focus. The issue is triggered when visiting a maliciously crafted website. This may allow a context-dependent attacker to execute arbitrary code. |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2014-01-10 | Apple Safari WebKit menu onchange memory corruption attempt RuleID : 19010 - Revision : 10 - Type : BROWSER-WEBKIT |
| 2014-01-10 | Apple Safari WebKit menu onchange memory corruption attempt RuleID : 19009 - Revision : 8 - Type : BROWSER-WEBKIT |
| 2014-01-10 | Apple Safari Webkit floating point conversion memory corruption attempt RuleID : 19008 - Revision : 10 - Type : BROWSER-WEBKIT |
| 2014-01-10 | Apple Safari Webkit removeAllRanges use-after-free attempt RuleID : 18995 - Revision : 8 - Type : BROWSER-WEBKIT |
| 2014-01-10 | Apple Safari WebKit Rendering Counter Code Execution RuleID : 18903 - Revision : 10 - Type : BROWSER-WEBKIT |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2014-12-15 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201412-09.nasl - Type : ACT_GATHER_INFO |
| 2014-06-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_3_libwebkit-110104.nasl - Type : ACT_GATHER_INFO |
| 2014-06-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_3_libwebkit-100920.nasl - Type : ACT_GATHER_INFO |
| 2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-0177.nasl - Type : ACT_GATHER_INFO |
| 2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20110125_webkitgtk_on_SL6_x.nasl - Type : ACT_GATHER_INFO |
| 2011-08-24 | Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-1195-1.nasl - Type : ACT_GATHER_INFO |
| 2011-05-05 | Name : The remote openSUSE host is missing a security update. File : suse_11_2_libwebkit-110111.nasl - Type : ACT_GATHER_INFO |
| 2011-03-11 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-2188.nasl - Type : ACT_GATHER_INFO |
| 2011-03-03 | Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2011-039.nasl - Type : ACT_GATHER_INFO |
| 2011-01-26 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-0177.nasl - Type : ACT_GATHER_INFO |
| 2011-01-10 | Name : The remote Fedora host is missing a security update. File : fedora_2011-0121.nasl - Type : ACT_GATHER_INFO |
| 2011-01-03 | Name : The remote FreeBSD host is missing a security-related update. File : freebsd_pkg_06a12e26142e11e0bea20015f2db7bde.nasl - Type : ACT_GATHER_INFO |
| 2010-12-14 | Name : The remote host contains a web browser that is affected by multiple vulnerabi... File : google_chrome_8_0_552_224.nasl - Type : ACT_GATHER_INFO |
| 2010-11-18 | Name : The remote host contains a web browser that is affected by several vulnerabil... File : safari_5_0_3.nasl - Type : ACT_GATHER_INFO |
| 2010-11-18 | Name : The remote host contains a web browser that is affected by several vulnerabil... File : macosx_Safari5_0_3.nasl - Type : ACT_GATHER_INFO |
| 2010-11-04 | Name : The remote host contains a web browser that is affected by multiple vulnerabi... File : google_chrome_7_0_517_44.nasl - Type : ACT_GATHER_INFO |
| 2010-10-21 | Name : The remote FreeBSD host is missing a security-related update. File : freebsd_pkg_e5090d2adbbe11df82f80015f2db7bde.nasl - Type : ACT_GATHER_INFO |
| 2010-10-20 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1006-1.nasl - Type : ACT_GATHER_INFO |
| 2010-10-20 | Name : The remote Fedora host is missing a security update. File : fedora_2010-15982.nasl - Type : ACT_GATHER_INFO |
| 2010-10-20 | Name : The remote Fedora host is missing a security update. File : fedora_2010-15957.nasl - Type : ACT_GATHER_INFO |
| 2010-09-21 | Name : The remote Fedora host is missing a security update. File : fedora_2010-14419.nasl - Type : ACT_GATHER_INFO |
| 2010-09-16 | Name : The remote Fedora host is missing a security update. File : fedora_2010-14409.nasl - Type : ACT_GATHER_INFO |
| 2010-09-12 | Name : The remote FreeBSD host is missing a security-related update. File : freebsd_pkg_9bcfd7b6bcda11df9a6a0015f2db7bde.nasl - Type : ACT_GATHER_INFO |
| 2010-09-08 | Name : The remote host contains a web browser that is affected by several vulnerabil... File : safari_5_0_2.nasl - Type : ACT_GATHER_INFO |
| 2010-09-08 | Name : The remote host contains a web browser that is affected by several vulnerabil... File : macosx_Safari5_0_2.nasl - Type : ACT_GATHER_INFO |
| 2010-09-02 | Name : The remote host contains a multimedia application that has multiple vulnerabi... File : itunes_10_0_banner.nasl - Type : ACT_GATHER_INFO |
| 2010-09-02 | Name : The remote host contains an application that has multiple vulnerabilities. File : itunes_10_0.nasl - Type : ACT_GATHER_INFO |
| 2010-09-02 | Name : The remote host contains a web browser that is affected by multiple vulnerabi... File : google_chrome_6_0_472_53.nasl - Type : ACT_GATHER_INFO |
| 2010-08-20 | Name : The remote host contains a web browser that is affected by multiple vulnerabi... File : google_chrome_5_0_375_127.nasl - Type : ACT_GATHER_INFO |
| 2010-07-28 | Name : The remote host contains a web browser that is affected by several vulnerabil... File : safari_5_0_1.nasl - Type : ACT_GATHER_INFO |
| 2010-07-28 | Name : The remote host contains a web browser that is affected by several vulnerabil... File : macosx_Safari5_0_1.nasl - Type : ACT_GATHER_INFO |
Alert History
| Date | Informations |
|---|---|
| 2014-02-17 11:54:17 |
|
