CVE-2010-1392

Public Date:
2010-06-07
CWE:
CWE-416
Bugzilla:
596382: CVE-2010-1392 WebKit: use-after-free vulnerabiity when rendering HTML buttons

The MITRE CVE dictionary describes this issue as:

Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors related to HTML buttons and the first-letter CSS style.

Find out more about CVE-2010-1392 from the MITRE CVE dictionary dictionary and NIST NVD.

Affected Packages State

Platform Package State
Red Hat Enterprise Linux 6 qt Affected
Red Hat Enterprise Linux 6 webkitgtk Affected

Acknowledgements

Red Hat would like to thank Drew Yao of Apple Product Security for responsibly reporting this issue. Upstream acknowledges Matthieu Bonetti of VUPEN Vulnerability Research Team as the original reporter.

Last Modified

CVE description copyright © 2017, The MITRE Corporation

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.