10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.069 Low
EPSS
Percentile
93.8%
WebKit in Apple iTunes before 9.2 on Windows, and Apple iOS before 4 on the
iPhone and iPod touch, accesses out-of-bounds memory during the handling of
tables, which allows remote attackers to execute arbitrary code or cause a
denial of service (application crash) via a crafted HTML document, a
different vulnerability than CVE-2010-1387 and CVE-2010-1763.
Author | Note |
---|---|
jdstrand | webkit is a fork of khtml from kdelibs. kdelibs5 is farther from it, while qt4-x11 attempts to unify khtml and webkit. |
mdeslaur | webkitkde is a wrapper around qt4-x11’s webkit. this looks like an ipod specific dupe of CVE-2010-1774. |