Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2010-1406
HistoryJun 11, 2010 - 12:00 a.m.

CVE-2010-1406

2010-06-1100:00:00
ubuntu.com
ubuntu.com
9

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.006 Low

EPSS

Percentile

79.1%

JSON

WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and
Windows, and before 4.1 on Mac OS X 10.4, sends an https URL in the Referer
header of an http request in certain circumstances involving https to http
redirection, which allows remote HTTP servers to obtain potentially
sensitive information via standard HTTP logging, a related issue to
CVE-2010-0660.

Bugs

Notes

Author Note
jdstrand qt4-x11 unmaintained upstream (see README.webkit for details) webkit is a fork of khtml from kdelibs. kdelibs5 is farther from it, while qt4-x11 attempts to unify khtml and webkit.
mdeslaur webkitkde is a wrapper around qt4-x11’s webkit.
OSVersionArchitecturePackageVersionFilename
ubuntu9.10noarchwebkit< 1.2.5-0ubuntu0.9.10.1UNKNOWN

Related

cve 2
prion 2
cvelist 2
nvd 2
debiancve 2
ubuntucve 1
nessus 9
openvas 7
securityvulns 2
cve
cve
CVE-2010-1406
2010-06-11 18:00:37
CVE-2010-0660
2010-02-18 18:00:00
prion
prion
Design/Logic Flaw
2010-06-11 18:00:00
Hardcoded credentials
2010-02-18 18:00:00
cvelist
cvelist
CVE-2010-1406
2010-06-11 17:28:00
CVE-2010-0660
2010-02-18 17:19:00
nvd
nvd
CVE-2010-1406
2010-06-11 18:00:37
CVE-2010-0660
2010-02-18 18:00:00
debiancve
debiancve
CVE-2010-1406
2010-06-11 18:00:00
CVE-2010-0660
2010-02-18 18:00:00
ubuntucve
ubuntucve
CVE-2010-0660
2010-02-18 00:00:00
nessus
nessus
Google Chrome < 4.0.249.78 Multiple Vulnerabilities
2010-01-26 00:00:00
Safari < 4.1 / 5.0 Multiple Vulnerabilities
2010-06-08 00:00:00
Safari < 4.1 / 5.0 Multiple Vulnerabilities
2010-06-08 00:00:00
openvas
openvas
Google Chrome Multiple Vulnerabilities - (Windows)
2010-02-22 00:00:00
Google Chrome Multiple Vulnerabilities - Windows
2010-02-22 00:00:00
Apple Safari Multiple Vulnerabilities (June-10)
2010-06-16 00:00:00
securityvulns
securityvulns
Apple Webkit / Safari / Google Chrome multiple security vulnerabilities
2010-06-11 00:00:00
VUPEN Security Research - Apple Safari WebKit HTML Button Use-after-free Vulnerability &#40;CVE-2010-1392&#41;
2010-06-08 00:00:00

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.006 Low

EPSS

Percentile

79.1%

JSON
Related for UB:CVE-2010-1406
cve2prion2cvelist2nvd2debiancve2ubuntucve1nessus9openvas7securityvulns2