Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2010-1029Apple Safari vulnerability

CWE-3999 documents5 sources
Severity
5.0MEDIUMNVD
EPSS
32.2%
top 3.16%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
2
Apple SafariGoogle Chrome
Timeline
PublishedMar 19
Latest updateApr 23

Description

Stack consumption vulnerability in the WebCore::CSSSelector function in WebKit, as used in Apple Safari 4.0.4, Apple Safari on iPhone OS and iPhone OS for iPod touch, and Google Chrome 4.0.249, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a STYLE element composed of a large number of *> sequences.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

NVDapple/safari4.0.4
NVDgoogle/chrome4.0.249.0

🔴Vulnerability Details

1
GHSA
GHSA-p27p-g844-ppm9: Stack consumption vulnerability in the WebCore::CSSSelector function in WebKit, as used in Apple Safari 42022-04-23

💥Exploits & PoCs

5
Exploit-DB
POP Peeper 3.4 - UIDL Buffer Overflow (Metasploit)2010-11-30
Exploit-DB
POP Peeper 3.4 - DATE Buffer Overflow (Metasploit)2010-11-11
Exploit-DB
ProFTPd IAC 1.3.x - Remote Command Execution2010-11-07
Exploit-DB
iPhone - 'WebCore::CSSSelector()' Remote Crash2010-02-24
Exploit-DB
Apple Safari 4.0.4 / Google Chrome 4.0.249 - CSS style Stack Overflow Denial of Service (PoC)2010-02-24

📋Vendor Advisories

1
Red Hat
qt: Stack consumption via specially-crafted CSS STYLE element2010-02-24

💬Community

1
Bugzilla
CVE-2010-1029 kdebase, WebKit, qt: Stack consumption via specially-crafted CSS STYLE element2010-03-20