WebKit ':first-letter' and ':first-line' Pseudo-Elements Remote Memory Corruption Vulnerability

WebKit is prone to a remote memory-corruption vulnerability.

An attacker can exploit this issue by tricking an unsuspecting victim into viewing a web page containing malicious content. A successful exploit will result in the execution of arbitrary attacker-supplied code in the context of the user running the affected application.

This issue has been addressed in Apple Safari 5.0.1 and 4.1.1.

NOTE: This issue was previously covered in BID 42020 (Apple Safari Prior to 5.0.1 and 4.1.1 Multiple Security Vulnerabilities) but has been given its own record to better document it.


Privacy Statement
Copyright 2010, SecurityFocus