Уязвимость CVE-2010-1422: Информация

Описание

WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, does not properly handle changes to keyboard focus that occur during processing of key press events, which allows remote attackers to force arbitrary key presses via a crafted HTML document.

Важность: MEDIUM (4,3)

URL: https://nvd.nist.gov/vuln/detail/CVE-2010-1422

Опубликовано: 11 июня 2010 г.

Изменено: 19 сентября 2017 г.

Ссылки на рекомендации, решения и инструменты

Ссылка	Ресурс
40620	Patch
40105	Vendor Advisory
http://support.apple.com/kb/HT4196	Vendor Advisory
ADV-2010-1373	Patch Vendor Advisory
1024067
APPLE-SA-2010-06-07-1	Patch Vendor Advisory
APPLE-SA-2010-06-16-1
ADV-2010-1512
http://support.apple.com/kb/HT4220
40196
https://bugzilla.mozilla.org/show_bug.cgi?id=552255
http://support.apple.com/kb/HT4334
APPLE-SA-2010-09-08-1
USN-1006-1
ADV-2010-2722
41856
APPLE-SA-2010-11-22-1
http://support.apple.com/kb/HT4456
42314
SUSE-SR:2011:002
43068
ADV-2011-0212
MDVSA-2011:039
ADV-2011-0552
oval:org.mitre.oval:def:7591

Подверженные конфигурации:
1. Конфигурация 1
  cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*
  cpe:2.3:a:apple:safari:4.0:*:*:*:*:*:*:*
  cpe:2.3:a:apple:safari:4.0.0b:*:*:*:*:*:*:*
  cpe:2.3:a:apple:safari:4.0.1:*:*:*:*:*:*:*
  cpe:2.3:a:apple:safari:4.0.2:*:*:*:*:*:*:*
  cpe:2.3:a:apple:safari:4.0.3:*:*:*:*:*:*:*
  cpe:2.3:a:apple:safari:4.0.4:*:*:*:*:*:*:*
  cpe:2.3:a:apple:webkit:*:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x:10.5:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x:10.5.0:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x:10.5.1:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x:10.5.2:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x:10.5.3:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x:10.5.4:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x:10.5.5:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x:10.5.6:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x:10.5.7:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x:10.5.8:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x:10.6.0:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x:10.6.1:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x:10.6.2:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x:10.6.3:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x_server:10.5:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x_server:10.5.0:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x_server:10.5.1:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x_server:10.5.2:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x_server:10.5.3:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x_server:10.5.4:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x_server:10.5.5:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x_server:10.5.6:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x_server:10.5.7:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x_server:10.5.8:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x_server:10.6.0:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x_server:10.6.1:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x_server:10.6.2:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x_server:10.6.3:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:microsoft:windows_7:*:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:microsoft:windows_vista:*:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:microsoft:windows_xp:*:sp2:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:microsoft:windows_xp:*:sp3:*:*:*:*:*:*
  
  Конфигурация 2
  cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*
  cpe:2.3:a:apple:safari:4.0:*:*:*:*:*:*:*
  cpe:2.3:a:apple:safari:4.0.0b:*:*:*:*:*:*:*
  cpe:2.3:a:apple:safari:4.0.1:*:*:*:*:*:*:*
  cpe:2.3:a:apple:safari:4.0.2:*:*:*:*:*:*:*
  cpe:2.3:a:apple:safari:4.0.3:*:*:*:*:*:*:*
  cpe:2.3:a:apple:safari:4.0.4:*:*:*:*:*:*:*
  cpe:2.3:a:apple:webkit:*:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x:10.4:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x:10.4.0:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x:10.4.1:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x:10.4.2:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x:10.4.3:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x:10.4.4:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x:10.4.5:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x:10.4.6:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x:10.4.7:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x:10.4.8:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x:10.4.9:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x:10.4.10:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x:10.4.11:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x_server:10.4:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x_server:10.4.0:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x_server:10.4.1:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x_server:10.4.2:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x_server:10.4.3:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x_server:10.4.4:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x_server:10.4.5:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x_server:10.4.6:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x_server:10.4.7:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x_server:10.4.8:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x_server:10.4.9:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x_server:10.4.10:*:*:*:*:*:*:*
  Running on/with:
  cpe:2.3:o:apple:mac_os_x_server:10.4.11:*:*:*:*:*:*:*

Версия: v24.5.0

Наверх

Уязвимость CVE-2010-1422: Информация

Описание

Ссылки на рекомендации, решения и инструменты

Конфигурация 1

Конфигурация 2