Lucene search

[email protected]CVE-2010-1120

HistoryMar 25, 2010 - 9:00 p.m.

CVE-2010-1120

2010-03-2521:00:00

CWE-94

[email protected]

web.nvd.nist.gov

cve-2010-1120

safari 4

mac os x 10.6

remote attack

arbitrary code execution

charlie miller

pwn2own

cansecwest 2010

nvd

7.3 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.055 Low

EPSS

Percentile

93.2%

JSON

Unspecified vulnerability in Safari 4 on Apple Mac OS X 10.6 allows remote attackers to execute arbitrary code via unknown vectors, as demonstrated by Charlie Miller during a Pwn2Own competition at CanSecWest 2010.

CPENameOperatorVersion
apple:safariapple safarieq4.0

CPE	Name	Operator	Version
apple:safari	apple safari	eq	4.0

References

dvlabs.tippingpoint.com/blog/2010/02/15/pwn2own-2010

news.cnet.com/8301-27080_3-20001126-245.html

twitter.com/thezdi/statuses/11002504493

7.3 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.055 Low

EPSS

Percentile

93.2%

JSON

Related for CVE-2010-1120

threatpost1 nessus1 zdi1 securityvulns1 prion1