Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, Safari before 4.1 on Mac OS X 10.4, and Safari on Apple iPhone OS allows remote attackers to execute arbitrary code or cause a denial of service (application crash), or read the SMS database or other data, via vectors related to "attribute manipulation," as demonstrated by Vincenzo Iozzo and Ralf Philipp Weinmann during a Pwn2Own competition at CanSecWest 2010.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2010-03-25T20:31:00
Updated: 2017-09-18T12:57:01
Reserved: 2010-03-25T00:00:00
Link: CVE-2010-1119
JSON object: View
NVD Information
Status : Modified
Published: 2010-03-25T21:00:01.063
Modified: 2017-09-19T01:30:34.157
Link: CVE-2010-1119
JSON object: View
Redhat Information
No data.
CWE