CVE-2010-1770

🗓️ 11 Jun 2010 19:30:00Reported by ubuntu.comType

Apple Safari and Google Chrome before specific versions on Mac OS X and Windows mishandle text node transformations with IBM1147 character set, allowing remote attackers to execute code or cause denial of service via crafted HTML (CVE-2010-1770

Reporter	Title	Published	Views	Family All 63
FreeBSD	webkit-gtk2 -- Multiple vulnerabilities	16 Jul 201000:00	–	freebsd
Tenable Nessus	Safari < 4.1 / 5.0 Multiple Vulnerabilities	8 Jun 201000:00	–	nessus
Tenable Nessus	iTunes < 9.2 Multiple Vulnerabilities	17 Jun 201000:00	–	nessus
Tenable Nessus	Apple iOS < 4.2 Multiple Vulnerabilities	23 Nov 201000:00	–	nessus
Tenable Nessus	Safari < 4.1 / 5.0 Multiple Vulnerabilities	8 Jun 201000:00	–	nessus
Tenable Nessus	Fedora 13 : webkitgtk-1.2.4-1.fc13 (2010-14409)	16 Sep 201000:00	–	nessus
Tenable Nessus	Fedora 12 : webkitgtk-1.2.4-1.fc12 (2010-14419)	21 Sep 201000:00	–	nessus
Tenable Nessus	FreeBSD : webkit-gtk2 -- Multiple vulnerabilities (19419b3b-92bd-11df-b140-0015f2db7bde)	19 Jul 201000:00	–	nessus
Tenable Nessus	Apple iTunes < 9.2 Multiple Vulnerabilities (credentialed check)	17 Jun 201000:00	–	nessus
Tenable Nessus	Apple iTunes < 9.2 Multiple Vulnerabilities (uncredentialed check)	17 Jun 201000:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Ubuntu	9.10	any	webkit	1.2.5-0ubuntu0.9.10.1	webkit_1.2.5-0ubuntu0.9.10.1_any.deb
Ubuntu	10.04	any	webkit	1.2.5-0ubuntu0.10.04.1	webkit_1.2.5-0ubuntu0.10.04.1_any.deb

Source	Link
ubuntu	www.ubuntu.com/security/notices/USN-1006-1
cve	www.cve.org/CVERecord

24 Jul 2024 15:57Current

7.3High risk

Vulners AI Score7.3

CVSS 29.3

EPSS0.04756

apple safari google chrome mac os x windows ibm1147 remote attackers code execution denial of service html vulnerability