Red Hat Customer Portal

Skip to main content

CVE-2010-1774

WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, accesses out-of-bounds memory during processing of HTML tables, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted HTML document.

Details Source

Mitre

Public Date

2010-06-07 00:00:00

Impact

Critical

Bugzilla

CVE-2010-1774 WebKit: out-of-bounds memory access vulnerability in handling of HTML tables

Bugzilla ID

596 501

CVSS Status

draft

Base Score

6.80

Base Metrics

AV:N/AC:M/Au:N/C:P/I:P/A:P

Acknowledgements

Red Hat would like to thank Drew Yao of Apple Product Security for responsibly reporting this issue. Upstream acknowledges wushi of team509 as the original reporter.

Affected Packages State

Platform Package State
Red Hat Enterprise Linux 6 qt Will not fix
Red Hat Enterprise Linux 6 webkitgtk Will not fix