Описание
Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows user-assisted remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors involving a certain window close action that occurs during a drag-and-drop operation.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | ignored | uses its own embedded webkit |
| hardy | DNE | |
| jaunty | DNE | |
| karmic | DNE | |
| lucid | ignored | end of life |
| maverick | ignored | end of life |
| natty | ignored | end of life |
| oneiric | ignored | end of life |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | not-affected | no webkit |
| devel | not-affected | webkit isn't built |
| hardy | not-affected | no webkit |
| jaunty | ignored | end of life |
| karmic | ignored | end of life |
| lucid | ignored | end of life |
| maverick | not-affected | webkit isn't built |
| natty | not-affected | webkit isn't built |
| oneiric | not-affected | webkit isn't built |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | not-affected | 1.2.4-1ubuntu1 |
| hardy | ignored | end of life |
| jaunty | ignored | end of life |
| karmic | released | 1.2.5-0ubuntu0.9.10.1 |
| lucid | released | 1.2.5-0ubuntu0.10.04.1 |
| maverick | not-affected | 1.2.4-1ubuntu1 |
| natty | not-affected | 1.2.4-1ubuntu1 |
| oneiric | not-affected | 1.2.4-1ubuntu1 |
| upstream | needs-triage |
Показывать по
EPSS
9.3 Critical
CVSS2
Связанные уязвимости
Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows user-assisted remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors involving a certain window close action that occurs during a drag-and-drop operation.
Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows user-assisted remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors involving a certain window close action that occurs during a drag-and-drop operation.
Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on M ...
Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows user-assisted remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors involving a certain window close action that occurs during a drag-and-drop operation.
EPSS
9.3 Critical
CVSS2