Sign-up

ID

VAR-201003-0125


CVE

CVE-2010-0045


TITLE

Apple Safari Vulnerable to arbitrary code execution

Trust: 0.8

sources: JVNDB: JVNDB-2010-001185

DESCRIPTION

Apple Safari before 4.0.5 on Windows does not properly validate external URL schemes, which allows remote attackers to open local files and execute arbitrary code via a crafted HTML document. Attackers may exploit this issue to execute arbitrary code in the context of the application. Versions prior to Safari 4.0.5 running on Microsoft Windows 7, XP, and Vista are vulnerable. This issue was previously documented in BID 38671 (Apple Safari Prior to 4.0.5 Multiple Security Vulnerabilities) but has been given its own record to better document it. NOTE: This BID is being retired because the following individual records have been created to better document issues previously mentioned in this BID: 38674 Apple Safari Prior to 4.0.5 Integer Overflow Vulnerability 35451 LibTIFF 'LZWDecodeCompat()' Remote Buffer Underflow Vulnerability 38676 Apple Safari BMP Image Uninitialized Memory Information Disclosure Vulnerability 38677 Apple Safari TIFF Image Uninitialized Memory Information Disclosure Vulnerability 38673 Apple Safari ImageIO TIFF Image Remote Code Execution Vulnerability 38675 Apple Safari Prior to 4.0.5 Configuration Bypass Weakness 38683 Apple Safari URL Schemes Handling Remote Code Execution Vulnerability 38684 WebKit CSS 'format()' Arguments Memory Corruption Vulnerability 38687 WebKit Object Element Fallback Memory Corruption Vulnerability 38688 WebKit XML Document Parsing Memory Corruption Vulnerability 38689 WebKit Right-to-Left Displayed Text Handling Memory Corruption Vulnerability 38685 WebKit Nested HTML Tags Use-After-Free Error Remote Code Execution Vulnerability 38692 WebKit Cross-Origin Stylesheet Request Information Disclosure Vulnerability 38686 WebKit HTML Elements Callback Use-After-Free Error Remote Code Execution Vulnerability 38690 WebKit CSS Display Use-After-Free Error Remote Code Execution Vulnerability 38691 WebKit HTML Image Element Handling Memory Corruption Vulnerability. Safari is the web browser bundled by default in the Apple family machine operating system

Trust: 2.25

sources: NVD: CVE-2010-0045 // JVNDB: JVNDB-2010-001185 // BID: 38683 // BID: 38671 // VULHUB: VHN-42650

AFFECTED PRODUCTS

vendor:applemodel:safariscope:eqversion:4.0.1

Trust: 1.9

vendor:applemodel:safariscope:eqversion:4.0.2

Trust: 1.9

vendor:applemodel:safariscope:eqversion:4.0.3

Trust: 1.9

vendor:applemodel:safariscope:eqversion:4.0

Trust: 1.6

vendor:applemodel:safariscope:lteversion:4.0.4

Trust: 1.0

vendor:applemodel:safariscope:eqversion:4.0.4

Trust: 0.9

vendor:applemodel:safariscope:ltversion:4.0.5

Trust: 0.8

vendor:applemodel:safari for windowsscope:eqversion:4.0.4

Trust: 0.6

vendor:applemodel:safari for windowsscope:eqversion:4.0.3

Trust: 0.6

vendor:applemodel:safari for windowsscope:eqversion:4.0.2

Trust: 0.6

vendor:applemodel:safari for windowsscope:eqversion:4

Trust: 0.6

vendor:applemodel:safari for windowsscope:neversion:4.0.5

Trust: 0.6

vendor:applemodel:safariscope:neversion:4.0.5

Trust: 0.3

vendor:applemodel:safari betascope:eqversion:4

Trust: 0.3

vendor:applemodel:safariscope:eqversion:4

Trust: 0.3

sources: BID: 38683 // BID: 38671 // JVNDB: JVNDB-2010-001185 // CNNVD: CNNVD-201003-184 // NVD: CVE-2010-0045

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2010-0045
value: HIGH

Trust: 1.0

NVD: CVE-2010-0045
value: HIGH

Trust: 0.8

CNNVD: CNNVD-201003-184
value: CRITICAL

Trust: 0.6

VULHUB: VHN-42650
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2010-0045
severity: HIGH
baseScore: 9.3
vectorString: AV:N/AC:M/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 8.6
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-42650
severity: HIGH
baseScore: 9.3
vectorString: AV:N/AC:M/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 8.6
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-42650 // JVNDB: JVNDB-2010-001185 // CNNVD: CNNVD-201003-184 // NVD: CVE-2010-0045

PROBLEMTYPE DATA

problemtype:CWE-20

Trust: 1.9

sources: VULHUB: VHN-42650 // JVNDB: JVNDB-2010-001185 // NVD: CVE-2010-0045

THREAT TYPE

network

Trust: 0.6

sources: BID: 38683 // BID: 38671

TYPE

input validation

Trust: 0.6

sources: CNNVD: CNNVD-201003-184

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2010-001185

PATCH
title:HT4070url:http://support.apple.com/kb/HT4070
Trust: 0.8
title:HT4070url:http://support.apple.com/kb/HT4070?viewlocale=ja_JP
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2010-001185

EXTERNAL IDS
db:NVDid:CVE-2010-0045
Trust: 2.8
db:BIDid:38671
Trust: 2.0
db:SECTRACKid:1023706
Trust: 1.1
db:JVNDBid:JVNDB-2010-001185
Trust: 0.8
db:CNNVDid:CNNVD-201003-184
Trust: 0.7
db:NSFOCUSid:14628
Trust: 0.6
db:APPLEid:APPLE-SA-2010-03-11-1
Trust: 0.6
db:BIDid:38683
Trust: 0.4
db:VULHUBid:VHN-42650
Trust: 0.1
sources:
            
            
            VULHUB: VHN-42650 // 
            
            
            
            BID: 38683 // 
            
            
            
            BID: 38671 // 
            
            
            
            JVNDB: JVNDB-2010-001185 // 
            
            
            
            CNNVD: CNNVD-201003-184 // 
            
            
            
            NVD: CVE-2010-0045

REFERENCES
url:http://lists.apple.com/archives/security-announce/2010/mar/msg00000.html
Trust: 1.7
url:http://www.securityfocus.com/bid/38671
Trust: 1.7
url:http://support.apple.com/kb/ht4070
Trust: 1.7
url:https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a6817
Trust: 1.1
url:http://www.securitytracker.com/id?1023706
Trust: 1.1
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2010-0045
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2010-0045
Trust: 0.8
url:http://www.apple.com/safari/
Trust: 0.6
url:http://www.nsfocus.net/vulndb/14628
Trust: 0.6
sources:
            
            
            VULHUB: VHN-42650 // 
            
            
            
            BID: 38683 // 
            
            
            
            BID: 38671 // 
            
            
            
            JVNDB: JVNDB-2010-001185 // 
            
            
            
            CNNVD: CNNVD-201003-184 // 
            
            
            
            NVD: CVE-2010-0045

CREDITS
Matthew Jurczyk Billy Rios Robert Swiecki robert@swiecki.net wushi wooshi@gmail.com
Trust: 0.6
sources:
            
            
            CNNVD: CNNVD-201003-184

SOURCES
db:VULHUBid:VHN-42650
db:BIDid:38683
db:BIDid:38671
db:JVNDBid:JVNDB-2010-001185
db:CNNVDid:CNNVD-201003-184
db:NVDid:CVE-2010-0045

LAST UPDATE DATE
2024-11-23T20:33:14.020000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-42650date:2017-09-19T00:00:00
db:BIDid:38683date:2010-03-11T00:00:00
db:BIDid:38671date:2010-03-12T15:32:00
db:JVNDBid:JVNDB-2010-001185date:2010-03-25T00:00:00
db:CNNVDid:CNNVD-201003-184date:2010-03-18T00:00:00
db:NVDid:CVE-2010-0045date:2024-11-21T01:11:24.213

SOURCES RELEASE DATE
db:VULHUBid:VHN-42650date:2010-03-15T00:00:00
db:BIDid:38683date:2010-03-11T00:00:00
db:BIDid:38671date:2010-03-11T00:00:00
db:JVNDBid:JVNDB-2010-001185date:2010-03-25T00:00:00
db:CNNVDid:CNNVD-201003-184date:2010-03-15T00:00:00
db:NVDid:CVE-2010-0045date:2010-03-15T13:28:25.497