Vulnerability CVE-2010-1770: Information

Description

WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, Apple Safari before 4.1 on Mac OS X 10.4, and Google Chrome before 5.0.375.70 does not properly handle a transformation of a text node that has the IBM1147 character set, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document containing a BR element, related to a "type checking issue."

Severity: CRITICAL (9.3)

URL: https://nvd.nist.gov/vuln/detail/CVE-2010-1770
Published: June 11, 2010
Modified: Aug. 7, 2020
Error type identifier: CWE-94

References to Advisories, Solutions, and Tools

Hyperlink
Resource
1024067
  • Third Party Advisory
  • VDB Entry
ADV-2010-1373
  • Permissions Required
  • Third Party Advisory
APPLE-SA-2010-06-07-1
  • Mailing List
  • Patch
  • Vendor Advisory
http://support.apple.com/kb/HT4196
  • Vendor Advisory
40620
  • Patch
  • Third Party Advisory
  • VDB Entry
40105
  • Third Party Advisory
http://zerodayinitiative.com/advisories/ZDI-10-093/
  • Third Party Advisory
  • VDB Entry
http://code.google.com/p/chromium/issues/detail?id=43487
  • Vendor Advisory
http://googlechromereleases.blogspot.com/2010/06/stable-channel-update.html
  • Vendor Advisory
40072
  • Third Party Advisory
APPLE-SA-2010-06-16-1
  • Mailing List
  • Vendor Advisory
http://support.apple.com/kb/HT4220
  • Vendor Advisory
ADV-2010-1512
  • Permissions Required
  • Third Party Advisory
40196
  • Third Party Advisory
APPLE-SA-2010-09-08-1
  • Mailing List
  • Vendor Advisory
http://support.apple.com/kb/HT4334
  • Vendor Advisory
41856
  • Third Party Advisory
ADV-2010-2722
  • Permissions Required
  • Third Party Advisory
USN-1006-1
  • Third Party Advisory
http://support.apple.com/kb/HT4456
  • Vendor Advisory
APPLE-SA-2010-11-22-1
  • Mailing List
  • Vendor Advisory
42314
  • Third Party Advisory
ADV-2011-0212
  • Permissions Required
  • Third Party Advisory
43068
  • Third Party Advisory
SUSE-SR:2011:002
  • Mailing List
  • Third Party Advisory
MDVSA-2011:039
  • Third Party Advisory
ADV-2011-0552
  • Permissions Required
  • Third Party Advisory
oval:org.mitre.oval:def:7099
  • Third Party Advisory

    1. Configuration 1

      cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*
      cpe:2.3:a:apple:webkit:*:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x:10.5:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x:10.5.0:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x:10.5.1:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x:10.5.2:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x:10.5.3:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x:10.5.4:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x:10.5.5:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x:10.5.6:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x:10.5.7:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x:10.5.8:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x:10.6.0:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x:10.6.1:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x:10.6.2:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x:10.6.3:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x_server:10.5:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x_server:10.5.0:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x_server:10.5.1:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x_server:10.5.2:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x_server:10.5.3:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x_server:10.5.4:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x_server:10.5.5:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x_server:10.5.6:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x_server:10.5.7:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x_server:10.5.8:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x_server:10.6.0:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x_server:10.6.1:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x_server:10.6.2:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x_server:10.6.3:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:microsoft:windows_7:*:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:microsoft:windows_vista:*:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:microsoft:windows_xp:*:sp2:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:microsoft:windows_xp:*:sp3:*:*:*:*:*:*

      Configuration 2

      cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*
      cpe:2.3:a:apple:webkit:*:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x:10.4:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x:10.4.0:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x:10.4.1:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x:10.4.2:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x:10.4.3:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x:10.4.4:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x:10.4.5:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x:10.4.6:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x:10.4.7:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x:10.4.8:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x:10.4.9:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x:10.4.10:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x:10.4.11:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x_server:10.4:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x_server:10.4.0:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x_server:10.4.1:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x_server:10.4.2:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x_server:10.4.3:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x_server:10.4.4:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x_server:10.4.5:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x_server:10.4.6:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x_server:10.4.7:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x_server:10.4.8:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x_server:10.4.9:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x_server:10.4.10:*:*:*:*:*:*:*
      Running on/with:
      cpe:2.3:o:apple:mac_os_x_server:10.4.11:*:*:*:*:*:*:*

      Configuration 3

      cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
      End excliding
      5.0.375.70

      Configuration 4

      cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*
      cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:lts:*:*:*
      cpe:2.3:o:canonical:ubuntu_linux:9.10:*:*:*:*:*:*:*
      cpe:2.3:o:opensuse:opensuse:11.2:*:*:*:*:*:*:*
      cpe:2.3:o:opensuse:opensuse:11.3:*:*:*:*:*:*:*
      cpe:2.3:o:suse:suse_linux_enterprise_server:11:sp1:*:*:*:*:*:*
      cpe:2.3:o:suse:suse_linux_enterprise_desktop:11:sp1:*:*:*:*:*:*
      cpe:2.3:o:suse:suse_linux_enterprise_server:10:sp3:*:*:*:*:*:*
      cpe:2.3:o:canonical:ubuntu_linux:10.04.4:*:*:*:lts:*:*:*
      cpe:2.3:o:suse:suse_linux_enterprise_desktop:10:sp3:*:*:*:*:*:*
VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Version: v24.4.2
Back to top