CVE-2010-1029
CVE-2010-1029
Stack consumption vulnerability in the WebCore::CSSSelector function in WebKit, as used in Apple Safari 4.0.4, Apple Safari on iPhone OS and iPhone OS for iPod touch, and Google Chrome 4.0.249, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a STYLE element composed of a large number of *> sequences.
Produtos afetados
n/a · n/aPoCs públicas encontradas — 4
cve_referencewww.exploit-db.com/exploits/11567não verificadocve_referencewww.exploit-db.com/exploits/11574não verificadoexploitdbwww.exploit-db.com/exploits/11574não verificadoexploitdbwww.exploit-db.com/exploits/11567não verificado⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.htmlhttp://secunia.com/advisories/43068https://exchange.xforce.ibmcloud.com/vulnerabilities/56524https://exchange.xforce.ibmcloud.com/vulnerabilities/56527https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14301http://www.exploit-db.com/exploits/11567http://www.exploit-db.com/exploits/11574http://www.securityfocus.com/bid/38398http://www.vupen.com/english/advisories/2011/0212