CVE-2010-1807

WebKit in Apple Safari 4.x before 4.1.2 and 5.x before 5.0.2; Android before 2.2; and webkitgtk before 1.2.6; does not properly validate floating-point data, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted HTML document, related to non-standard NaN representation.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:apple:safari:4.0.5:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:4.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:4.0.0b:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:4.1.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:4.0:beta:*:*:*:*:*:*
cpe:2.3:a:apple:safari:4.0.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:4.0.4:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:4.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:4.0.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:4.0.2:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:a:apple:safari:5.0.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:5.0:*:*:*:*:*:*:*

Configuration 3 (hide)

OR cpe:2.3:o:google:android:*:*:*:*:*:*:*:*
cpe:2.3:o:google:android:1.6:*:*:*:*:*:*:*
cpe:2.3:o:google:android:1.5:*:*:*:*:*:*:*
cpe:2.3:o:google:android:2.0:*:*:*:*:*:*:*
cpe:2.3:o:google:android:1.1:*:*:*:*:*:*:*
cpe:2.3:o:google:android:1.0:*:*:*:*:*:*:*

Configuration 4 (hide)

OR cpe:2.3:a:webkitgtk:webkitgtk:1.2.0:*:*:*:*:*:*:*
cpe:2.3:a:webkitgtk:webkitgtk:1.2.2:*:*:*:*:*:*:*
cpe:2.3:a:webkitgtk:webkitgtk:1.2.1:*:*:*:*:*:*:*
cpe:2.3:a:webkitgtk:webkitgtk:1.2.4:*:*:*:*:*:*:*
cpe:2.3:a:webkitgtk:webkitgtk:1.2.3:*:*:*:*:*:*:*
cpe:2.3:a:webkitgtk:webkitgtk:*:*:*:*:*:*:*:*

Information

Published : 2010-09-10 12:00

Updated : 2017-09-18 18:30


NVD link : CVE-2010-1807

Mitre link : CVE-2010-1807


JSON object : View

CWE
CWE-20

Improper Input Validation

Advertisement

dedicated server usa

Products Affected

google

  • android

apple

  • safari

webkitgtk

  • webkitgtk