CVE-2010-1759
published 2010-06-11CVE-2010-1759: Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote…
PriorityP350critical9.3CVSS 2.0
AVNACMAuNCCICAC
EXPLOIT
EPSS
15.73%
96.5th percentile
Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors related to the Node.normalize method.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | safari | <= 4.0.5 | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| chrome | < 5.0.375.70 | 5.0.375.70 |
CVSS provenance
nvdv2.09.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
vendor_redhat9.3CRITICAL
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-rp2m-j2gw-9mp4: Use-after-free vulnerability in WebKit in Apple Safari before 5
ghsa_unreviewed·2022-05-17
CVE-2010-1759 [HIGH] GHSA-rp2m-j2gw-9mp4: Use-after-free vulnerability in WebKit in Apple Safari before 5
Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors related to the Node.normalize method.
GHSA
GHSA-6g8m-cw34-9j5m: Use-after-free vulnerability in the Element::normalizeAttributes function in dom/Element
ghsa_unreviewed·2022-05-13·CVSS 9.3
CVE-2010-2300 [CRITICAL] CWE-416 GHSA-6g8m-cw34-9j5m: Use-after-free vulnerability in the Element::normalizeAttributes function in dom/Element
Use-after-free vulnerability in the Element::normalizeAttributes function in dom/Element.cpp in WebCore in WebKit in Google Chrome before 5.0.375.70 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via vectors related to handlers for DOM mutation events, aka rdar problem 7948784. NOTE: this might overlap CVE-2010-1759.
Red Hat
WebKit: use-after-free vulnerability in handling of the Node.normalize method
vendor_redhat·2010-06-07·CVSS 9.3
CVE-2010-1759 [CRITICAL] CWE-416 WebKit: use-after-free vulnerability in handling of the Node.normalize method
WebKit: use-after-free vulnerability in handling of the Node.normalize method
Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors related to the Node.normalize method.
Package: qt (Red Hat Enterprise Linux 6) - Will not fix
Package: webkitgtk (Red Hat Enterprise Linux 6) - Will not fix
No detection rules found.
Bugzilla
Please update to webkitgtk-1.2.3
bugzilla·2010-07-18·CVSS 10.0
[CRITICAL] Please update to webkitgtk-1.2.3
Please update to webkitgtk-1.2.3
Description of problem:
New version in the stable series of webkitgtk is available.
Version-Release number of selected component (if applicable):
webkitgtk-1.2.0-1.fc12.i686
From the announcement [1]:
"Some of you may have noticed WebKitGTK+ 1.2.2 and 1.2.3 have been uploaded recently. Here’s their announcement =). A quick summary: if you’re running the 1.2.x series upgrade to 1.2.3."
According the announcement It should fix one annoying bug with dragging current build is affected with.
It also includes fixes to various CVEs some of which might be also present in current fedora release. Full list of them is in NEWS file [2].
According to the NEWS it also is API/ABI compatible with current fedora release, so no incompatibility problems should arise fro
Bugzilla
update webkitgtk to 1.2.3
bugzilla·2010-07-16·CVSS 10.0
[CRITICAL] update webkitgtk to 1.2.3
update webkitgtk to 1.2.3
Description of problem:
A new version has been released by upstream so we may rebase to it. See http://www.webkitgtk.org/?page=download
Discussion:
From the NEWS file:
What's new in WebKitGTK+ 1.2.3?
- New stable release, API and ABI compatible with previous 1.2.x
versions;
- Includes a fix to build WebKit with ICU 4.4.1
- The patches to fix the following CVEs are included, thanks to the
work done by Michael Gilbert for the
Debian security team:
CVE-2010-1386 CVE-2010-1392 CVE-2010-1405 CVE-2010-1407
CVE-2010-1416 CVE-2010-1417 CVE-2010-1665 CVE-2010-1418
CVE-2010-1421 CVE-2010-1422 CVE-2010-1501 CVE-2010-1767
CVE-2010-1664 CVE-2010-1758 CVE-2010-1759 CVE-2010-1760
CVE-2010-1761 CVE-2010-1762 CVE-2010-1770 CVE-2010-1771
CVE-2010-1772 CVE-2010-1773 CVE-2010-
Bugzilla
CVE-2010-1759 WebKit: use-after-free vulnerability in handling of the Node.normalize method
bugzilla·2010-05-26·CVSS 9.3
CVE-2010-1759 [CRITICAL] CVE-2010-1759 WebKit: use-after-free vulnerability in handling of the Node.normalize method
CVE-2010-1759 WebKit: use-after-free vulnerability in handling of the Node.normalize method
A use after free issue exists in WebKit's handling of the Node.normalize method. Visiting a maliciously crafted website may lead to an unexpected application termination or arbitrary code execution. This issue is addressed through improved handling of the Node.normalize method.
References:
Bugzilla: https://bugs.webkit.org/show_bug.cgi?id=38583
Trac: http://trac.webkit.org/changeset/59109
Acknowledgements:
Red Hat would like to thank Drew Yao of Apple Product Security for responsibly reporting this issue. Upstream acknowledges Mark Dowd as the original reporter.
Discussion:
Public via:
[1] http://support.apple.com/kb/HT4196
http://lists.apple.com/archives/security-announce/2010//Jun/msg00002.htmlhttp://lists.apple.com/archives/security-announce/2010/Jun/msg00000.htmlhttp://lists.apple.com/archives/security-announce/2010/Jun/msg00003.htmlhttp://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.htmlhttp://secunia.com/advisories/40105http://secunia.com/advisories/40196http://secunia.com/advisories/41856http://secunia.com/advisories/43068http://securitytracker.com/id?1024067http://support.apple.com/kb/HT4196http://support.apple.com/kb/HT4220http://support.apple.com/kb/HT4225http://www.mandriva.com/security/advisories?name=MDVSA-2011:039http://www.securityfocus.com/bid/40620http://www.ubuntu.com/usn/USN-1006-1http://www.vupen.com/english/advisories/2010/1373http://www.vupen.com/english/advisories/2010/1512http://www.vupen.com/english/advisories/2010/2722http://www.vupen.com/english/advisories/2011/0212http://www.vupen.com/english/advisories/2011/0552https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7005http://lists.apple.com/archives/security-announce/2010//Jun/msg00002.htmlhttp://lists.apple.com/archives/security-announce/2010/Jun/msg00000.htmlhttp://lists.apple.com/archives/security-announce/2010/Jun/msg00003.htmlhttp://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.htmlhttp://secunia.com/advisories/40105http://secunia.com/advisories/40196http://secunia.com/advisories/41856http://secunia.com/advisories/43068http://securitytracker.com/id?1024067http://support.apple.com/kb/HT4196http://support.apple.com/kb/HT4220http://support.apple.com/kb/HT4225http://www.mandriva.com/security/advisories?name=MDVSA-2011:039http://www.securityfocus.com/bid/40620http://www.ubuntu.com/usn/USN-1006-1http://www.vupen.com/english/advisories/2010/1373http://www.vupen.com/english/advisories/2010/1512http://www.vupen.com/english/advisories/2010/2722http://www.vupen.com/english/advisories/2011/0212http://www.vupen.com/english/advisories/2011/0552https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7005
2010-06-11
Published