Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2010-1390

Опубликовано: 11 июн. 2010
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 4.3

Описание

Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to inject arbitrary web script or HTML via vectors related to improper UTF-7 canonicalization, and lack of termination of a quoted string in an HTML document.

РелизСтатусПримечание
dapper

DNE

devel

ignored

uses its own embedded webkit
hardy

DNE

jaunty

DNE

karmic

DNE

lucid

ignored

end of life
maverick

ignored

end of life
natty

ignored

end of life
oneiric

ignored

end of life
upstream

needs-triage

Показывать по

РелизСтатусПримечание
dapper

not-affected

no webkit
devel

not-affected

webkit isn't built
hardy

not-affected

no webkit
jaunty

ignored

end of life
karmic

ignored

end of life
lucid

ignored

end of life
maverick

not-affected

webkit isn't built
natty

not-affected

webkit isn't built
oneiric

not-affected

webkit isn't built
upstream

needs-triage

Показывать по

РелизСтатусПримечание
dapper

DNE

devel

not-affected

1.2.4-1ubuntu1
hardy

ignored

end of life
jaunty

ignored

end of life
karmic

released

1.2.5-0ubuntu0.9.10.1
lucid

not-affected

1.2.0-1
maverick

not-affected

1.2.4-1ubuntu1
natty

not-affected

1.2.4-1ubuntu1
oneiric

not-affected

1.2.4-1ubuntu1
upstream

needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 78%
0.01195
Низкий

4.3 Medium

CVSS2

Связанные уязвимости

nvd логотип

CVE-2010-1390

nvd
около 15 лет назад

Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to inject arbitrary web script or HTML via vectors related to improper UTF-7 canonicalization, and lack of termination of a quoted string in an HTML document.

debian логотип

CVE-2010-1390

debian
около 15 лет назад

Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari bef ...

github логотип

GHSA-xxqh-6qhx-prvr

github
больше 3 лет назад

Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to inject arbitrary web script or HTML via vectors related to improper UTF-7 canonicalization, and lack of termination of a quoted string in an HTML document.

EPSS

Процентиль: 78%
0.01195
Низкий

4.3 Medium

CVSS2