WebKit, as used in Apple Safari prior to 4.1.3 and 5.0.x prior to 5.0.3 and Google Chrome prior to 6.0.472.62, does not properly perform a cast of an unspecified variable, which allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via an SVG element in a non-SVG document.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple safari |
||
google chrome |
||
opensuse opensuse 11.2 |
||
opensuse opensuse 11.3 |