Lucene search

K
nvd[email protected]NVD:CVE-2010-0048
HistoryMar 15, 2010 - 1:28 p.m.

CVE-2010-0048

2010-03-1513:28:25
CWE-399
web.nvd.nist.gov
6

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

8.6

Confidence

High

EPSS

0.068

Percentile

93.9%

Use-after-free vulnerability in WebKit in Apple Safari before 4.0.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted XML document.

Affected configurations

Nvd
Node
applesafariRange4.0.4
OR
applesafariMatch4.0
OR
applesafariMatch4.0beta
OR
applesafariMatch4.0.1
OR
applesafariMatch4.0.2
OR
applesafariMatch4.0.3

References

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

8.6

Confidence

High

EPSS

0.068

Percentile

93.9%