Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.3
CVSSv2

CVE-2010-0051

Published: 15/03/2010 Updated: 19/09/2017
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
VMScore: 384
Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N
Subscribe to Safari

Vulnerability Summary

WebKit in Apple Safari prior to 4.0.5 does not properly validate the cross-origin loading of stylesheets, which allows remote malicious users to obtain sensitive information via a crafted HTML document. NOTE: this might overlap CVE-2010-0651.

Vulnerable Product Search on Vulmon Subscribe to Product

apple safari 4.0.2

apple safari 4.0.1

apple safari

apple safari 4.0.3

apple safari 4.0.0b

apple safari 4.0

Vendor Advisories

Debian CVElist Bug Report Logs: webkit: CVE-2010-0046 through CVE-2010-0054 (multiple vulnerabilities)
Debian Bug report logs - #574064 webkit: CVE-2010-0046 through CVE-2010-0054 (multiple vulnerabilities) Package: src:webkit; Maintainer for src:webkit is (unknown); Reported by: Michael Gilbert <michaelsgilbert@gmailcom> Date: Tue, 16 Mar 2010 02:30:01 UTC Severity: grave Tags: security Found in version webkit/101-4 ...

Github Repositories

https://github.com/kicaj29/secuirty

Thread modeling using Microsoft Threat Modeling Tool Application review Sample application review Architecture review Data flow diagrams Templates Common security issues XSS (Cross-site Scripting) CSRF (Cross-Site Request Forgery) HTTPS interception HSTS resources Thread modeling using Microsoft Threat Modeling Tool Application review users: who the users will be use

https://github.com/zz570557024/InterView-Q-A

👨‍⚖️Interview questiones and answers...

前端面试Q&A TypeScript和ES6的区别 TypeScript是一种由微软开发的自由和开源的编程语言。而且本质上向这个语言添加了可选的静态类型和基于类的面向对象编程。安德斯·海尔斯伯格,C#的首席架构师,已工作于TypeScript的开发。TypeScript 是 JavaScript 的超集。TypeScript是为大型应用之开

References

CWE-20http://lists.apple.com/archives/security-announce/2010/Mar/msg00000.htmlhttp://support.apple.com/kb/HT4070http://www.securityfocus.com/bid/38671http://osvdb.org/62944http://www.securitytracker.com/id?1023708http://support.apple.com/kb/HT4225http://lists.apple.com/archives/security-announce/2010/Jun/msg00003.htmlhttp://websec.sv.cmu.edu/css/css.pdfhttp://code.google.com/p/chromium/issues/detail?id=9877http://scarybeastsecurity.blogspot.com/2009/12/generic-cross-browser-cross-domain.htmlhttp://www.vupen.com/english/advisories/2010/2722http://secunia.com/advisories/41856http://www.ubuntu.com/usn/USN-1006-1http://support.apple.com/kb/HT4456http://lists.apple.com/archives/security-announce/2010//Nov/msg00003.htmlhttp://secunia.com/advisories/42314http://www.vupen.com/english/advisories/2011/0212http://secunia.com/advisories/43068http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.htmlhttp://www.mandriva.com/security/advisories?name=MDVSA-2011:039http://www.vupen.com/english/advisories/2011/0552https://exchange.xforce.ibmcloud.com/vulnerabilities/56837https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7554https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=574064https://nvd.nist.govhttps://github.com/zz570557024/InterView-Q-A
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site request forgeryCVE-2024-34351CVE-2024-1076CVE-2024-25522CVE-2024-34547CVE-2024-4644unauthorizedremoteCVE-2024-4671
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook