QwikSec

Security Database

CVE

CWE

Training

CVE-2010-1807

Published: Sep 10, 2010

Modified: Aug 7, 2024

PUBLISHED

Description

WebKit in Apple Safari 4.x before 4.1.2 and 5.x before 5.0.2; Android before 2.2; and webkitgtk before 1.2.6; does not properly validate floating-point data, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted HTML document, related to non-standard NaN representation.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

vendor-advisory

x_refsource_MANDRIVA

http://trac.webkit.org/changeset/64706

x_refsource_CONFIRM

vdb-entry

x_refsource_VUPEN

third-party-advisory

x_refsource_SECUNIA

vendor-advisory

x_refsource_UBUNTU

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_VUPEN

vdb-entry

x_refsource_VUPEN

vdb-entry

x_refsource_VUPEN

APPLE-SA-2010-09-07-1

vendor-advisory

x_refsource_APPLE

https://bugzilla.redhat.com/show_bug.cgi?id=627703

x_refsource_CONFIRM

http://www.computerworld.com/s/article/9195058/Researcher_to_release_Web_based_Android_attack

x_refsource_MISC

oval:org.mitre.oval:def:11964

vdb-entry

signature

x_refsource_OVAL

vdb-entry

x_refsource_BID

third-party-advisory

x_refsource_SECUNIA

SUSE-SR:2011:002

vendor-advisory

x_refsource_SUSE

third-party-advisory

x_refsource_SECUNIA

vendor-advisory

x_refsource_REDHAT

vdb-entry

x_refsource_VUPEN

http://support.apple.com/kb/HT4456

x_refsource_CONFIRM

APPLE-SA-2010-11-22-1

vendor-advisory

x_refsource_APPLE

http://support.apple.com/kb/HT4333

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.