|
259371
|
- |
|
apple
|
safari
webkit
|
WebKit.dll in WebKit, as used in Safari.exe 4.531.9.1 in Apple Safari, allows remote attackers to cause a denial of service (application crash) via JavaScript that writes <marquee> sequences in an in…
|
CWE-399
Resource Management Errors
|
CVE-2010-1729
|
2011-02-17 15:55 |
2010-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259372
|
- |
|
apple
|
safari
webkit
|
WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6, and before 4.1 on Mac OS X 10.4, does not properly handle clipboard (1) drag and (2) paste operations for URLs, which allows user-assi…
|
CWE-200
Information Exposure
|
CVE-2010-1388
|
2011-02-17 15:54 |
2010-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259373
|
- |
|
apple
|
safari
|
Buffer overflow in WebKit in Apple Safari before 4.0.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted floating-point numbers.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-2195
|
2011-02-17 15:44 |
2009-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259374
|
- |
|
apple
|
safari
|
WebKit in Apple Safari before 4.0.3 does not properly restrict the URL scheme of the pluginspage attribute of an EMBED element, which allows user-assisted remote attackers to launch arbitrary file: U…
|
CWE-200
Information Exposure
|
CVE-2009-2200
|
2011-02-17 15:44 |
2009-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259375
|
- |
|
apple
|
safari
|
WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not prevent web sites from loading third-party content into a subframe, which allow…
|
NVD-CWE-Other
|
CVE-2009-1681
|
2011-02-17 15:43 |
2009-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259376
|
- |
|
apple
|
safari
|
Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 allows remote attackers to inject arbitrary …
|
CWE-79
Cross-site Scripting
|
CVE-2009-1684
|
2011-02-17 15:43 |
2009-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259377
|
- |
|
apple
|
safari
|
Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 allows remote attackers to inject arbitrary …
|
CWE-79
Cross-site Scripting
|
CVE-2009-1685
|
2011-02-17 15:43 |
2009-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259378
|
- |
|
apple
|
safari
|
WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not properly handle constant (aka const) declarations in a type-conversion operatio…
|
CWE-20
Improper Input Validation
|
CVE-2009-1686
|
2011-02-17 15:43 |
2009-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259379
|
- |
|
apple
|
safari
|
Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 allows remote attackers to inject arbitrary …
|
CWE-79
Cross-site Scripting
|
CVE-2009-1688
|
2011-02-17 15:43 |
2009-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259380
|
- |
|
apple
|
safari
|
Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 allows remote attackers to inject arbitrary …
|
CWE-79
Cross-site Scripting
|
CVE-2009-1689
|
2011-02-17 15:43 |
2009-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
