CVE-2010-0925Apple Safari vulnerability

2 documents2 sources
Severity
5.0MEDIUMNVD
EPSS
0.5%
top 34.84%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Apple Safari
Timeline
PublishedMar 3
Latest updateMay 2

Description

cfnetwork.dll 1.450.5.0 in CFNetwork, as used by safari.exe 531.21.10 in Apple Safari 4.0.4 on Windows, allows remote attackers to cause a denial of service (application crash) via a long string in the SRC attribute of a (1) IMG or (2) IFRAME element.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDapple/safari4.0.4

🔴Vulnerability Details

1
GHSA
GHSA-h686-wf4f-g3q9: cfnetwork2022-05-02