WebKit WebSockets Integer Overflow Remote Code Execution Vulnerability

Bugtraq ID: 44956
Class: Boundary Condition Error
CVE: CVE-2010-3805
Remote: Yes
Local: No
Published: Nov 18 2010 12:00AM
Updated: Nov 22 2010 05:56PM
Credit: Keith Campbell, and Cris Neckar of Google Chrome Security Team
Vulnerable: WebKit Open Source Project WebKit 0
Apple Safari 4.1.2 for Windows
Apple Safari 4.0.5 for Windows
Apple Safari 4.0.5
Apple Safari 4.0.4 for Windows
Apple Safari 4.0.4
Apple Safari 4.0.3 for Windows
Apple Safari 4.0.3
Apple Safari 4.0.2 for Windows
Apple Safari 4.0.2
Apple Safari 4.0.1
Apple Safari 5.0.2 for Windows
Apple Safari 5.0.2
Apple Safari 5.0.1 for Windows
Apple Safari 5.0.1
Apple Safari 5.0 for Windows
Apple Safari 5.0
Apple Safari 4.1.2
Apple Safari 4.1.1
Apple Safari 4.1
Apple Safari 4 for Windows
Apple Safari 4 Beta
Apple Safari 4
Apple iPod Touch 3.1.3
Apple iPod Touch 3.1.2
Apple iPod Touch 3.1.1
Apple iPod Touch 2.2.1
Apple iPod Touch 3.0
Apple iPod Touch 2.2
Apple iPod Touch 2.1
Apple iPhone 4.0.1
Apple iPhone 3.2.1
Apple iPhone 3.1.3
Apple iPhone 3.1.2
Apple iPhone 3.0.1
Apple iPhone 2.2.1
Apple iPhone 2.0.2
Apple iPhone 2.0.1
Apple iPhone 4.1
Apple iPhone 4.0
Apple iPhone 3.2
Apple iPhone 3.1
Apple iPhone 3.0
Apple iPhone 2.2
Apple iPhone 2.1
Apple iPhone 2.0
Apple iPad 3.2.1
Apple iPad 3.2.2
Apple iPad 3.2
Apple iPad 0
Apple iOS 4.0.2
Apple iOS 4.0.1
Apple iOS 3.2.2
Apple iOS 3.2.1
Apple iOS 4.2 beta
Apple iOS 4.1
Apple iOS 4
Apple iOS 3.2
Not Vulnerable: Apple Safari 5.0.3 for Windows
Apple Safari 5.0.3
Apple Safari 4.1.3 for Windows
Apple Safari 4.1.3
Apple iOS 4.2


 

Privacy Statement
Copyright 2010, SecurityFocus