SUSE CVE-2010-0047

Use-after-free vulnerability in WebKit in Apple Safari before 4.0.5 allows remote attackers to execute arbitrary code or cause a denial of service application crash via vectors related to "HTML object element fallback content."...

rubygem-actionpack: i18n missing translation XSS

It was discovered that the internationalization component of Ruby on Rails could, under certain circumstances, return a fallback HTML string that contained user input. A remote attacker could possibly use this flaw to perform a reflective cross-site scripting XSS attack by providing a specially...

rubygem-actionpack: i18n missing translation XSS

It was discovered that the internationalization component of Ruby on Rails could, under certain circumstances, return a fallback HTML string that contained user input. A remote attacker could possibly use this flaw to perform a reflective cross-site scripting XSS attack by providing a specially...

CVE-2010-0047

Use-after-free vulnerability in WebKit in Apple Safari before 4.0.5 allows remote attackers to execute arbitrary code or cause a denial of service application crash via vectors related to "HTML object element fallback content."...

PT-2010-1872 · Apple · Safari +1

Name of the Vulnerable Software and Affected Versions: Apple Safari versions prior to 4.0.5 Description: The issue is related to a use-after-free vulnerability in WebKit, allowing remote attackers to execute arbitrary code or cause a denial of service, such as an application crash. This is achiev...