Details of VAR-201007-0315

ID

VAR-201007-0315

CVE

CVE-2010-1778

TITLE

Apple Safari Vulnerable to cross-site scripting

Trust: 0.8

sources: JVNDB: JVNDB-2010-001845

DESCRIPTION

Cross-site scripting (XSS) vulnerability in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4, allows remote attackers to inject arbitrary web script or HTML via an RSS feed. Successful exploits will allow attackers to gain access to sensitive information. This issue has been addressed in Apple Safari 5.0.1 and 4.1.1. Safari is prone to multiple security vulnerabilities that have been addressed in Apple security advisory APPLE-SA-2010-07-28-1. Attackers can exploit these issues by enticing an unsuspecting user into visiting a malicious webpage. Successful attacks may result in information disclosure, remote code execution, denial of service, or other consequences. This BID is being retired. The following individual records exist to better document these issues: 41884 Apple Safari Personal Address Book AutoFill Information Disclosure Weakness 42034 WebKit Inline Elements Remote Memory Corruption Vulnerability 42035 WebKit CVE-2010-1783 Remote Memory Corruption Vulnerability 42036 WebKit CSS Counters Remote Memory Corruption Vulnerability 42037 WebKit ':first-letter' and ':first-line' Pseudo-Elements Remote Memory Corruption Vulnerability 42038 WebKit CVE-2010-1787 Floating Elements Remote Memory Corruption Vulnerability 42039 Apple Safari RSS Feed Information Disclosure Vulnerability 42041 WebKit 'use' Element Handling Remote Memory Corruption Vulnerability 42042 WebKit Regular Expression Handling Remote Memory Corruption Vulnerability 42043 WebKit Just-In-Time Compiled JavaScript Stubs Remote Code Execution Vulnerability 42044 WebKit Element Focus Use-After-Free Remote Code Execution Vulnerability 42045 WebKit JavaScript Array Signedness Error Remote Code Execution Vulnerability 42046 WebKit 'foreignObject' Elements Use-After-Free Remote Code Execution Vulnerability 42048 WebKit JavaScript String Object Remote Heap Based Buffer Overflow Vulnerability 42049 WebKit 'font-face' and 'use' Elements Use-After-Free Remote Code Execution Vulnerability

Trust: 2.25

sources: NVD: CVE-2010-1778 // JVNDB: JVNDB-2010-001845 // BID: 42039 // BID: 42020 // VULHUB: VHN-44383

AFFECTED PRODUCTS

vendor:	apple	model:	safari	scope:	eq	version:	4.0.5	Trust: 2.2
vendor:	apple	model:	safari	scope:	eq	version:	4.0.4	Trust: 2.2
vendor:	apple	model:	safari	scope:	eq	version:	4.0.3	Trust: 2.2
vendor:	apple	model:	safari	scope:	eq	version:	4.0.2	Trust: 2.2
vendor:	apple	model:	safari	scope:	eq	version:	4.0.1	Trust: 2.2
vendor:	apple	model:	safari	scope:	eq	version:	4.0.0b	Trust: 1.6
vendor:	apple	model:	safari	scope:	eq	version:	4.0	Trust: 1.6
vendor:	apple	model:	safari	scope:	eq	version:	4	Trust: 1.4
vendor:	apple	model:	safari	scope:	eq	version:	5.0	Trust: 1.2
vendor:	apple	model:	safari	scope:	lte	version:	5.0	Trust: 1.0
vendor:	apple	model:	webkit	scope:	eq	version:	*	Trust: 1.0
vendor:	apple	model:	safari	scope:	lte	version:	4.1	Trust: 1.0
vendor:	apple	model:	mac os x	scope:	eq	version:	v10.4.11	Trust: 0.8
vendor:	apple	model:	mac os x	scope:	eq	version:	v10.5.8	Trust: 0.8
vendor:	apple	model:	mac os x server	scope:	eq	version:	v10.4.11	Trust: 0.8
vendor:	apple	model:	mac os x server	scope:	eq	version:	v10.5.8	Trust: 0.8
vendor:	apple	model:	safari	scope:	eq	version:	5	Trust: 0.8
vendor:	apple	model:	safari for windows	scope:	eq	version:	4.0.5	Trust: 0.6
vendor:	apple	model:	safari for windows	scope:	eq	version:	4.0.4	Trust: 0.6
vendor:	apple	model:	safari for windows	scope:	eq	version:	4.0.3	Trust: 0.6
vendor:	apple	model:	safari for windows	scope:	eq	version:	4.0.2	Trust: 0.6
vendor:	apple	model:	safari for windows	scope:	eq	version:	5.0	Trust: 0.6
vendor:	apple	model:	safari	scope:	eq	version:	4.1	Trust: 0.6
vendor:	apple	model:	safari for windows	scope:	eq	version:	4	Trust: 0.6
vendor:	apple	model:	safari beta	scope:	eq	version:	4	Trust: 0.6
vendor:	apple	model:	safari	scope:	ne	version:	5.0.1	Trust: 0.6
vendor:	apple	model:	safari	scope:	ne	version:	4.1.1	Trust: 0.6
vendor:	apple	model:	webkit	scope:	-	version:	-	Trust: 0.6

sources: BID: 42039 // BID: 42020 // JVNDB: JVNDB-2010-001845 // CNNVD: CNNVD-201007-313 // NVD: CVE-2010-1778

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2010-1778
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2010-1778
value:	MEDIUM
Trust: 0.8
CNNVD:	CNNVD-201007-313
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-44383
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2010-1778
severity:	MEDIUM
baseScore:	4.3
vectorString:	AV:N/AC:M/AU:N/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	8.6
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-44383
severity:	MEDIUM
baseScore:	4.3
vectorString:	AV:N/AC:M/AU:N/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	8.6
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-44383 // JVNDB: JVNDB-2010-001845 // CNNVD: CNNVD-201007-313 // NVD: CVE-2010-1778

PROBLEMTYPE DATA

problemtype:

CWE-79

Trust: 1.9

sources: VULHUB: VHN-44383 // JVNDB: JVNDB-2010-001845 // NVD: CVE-2010-1778

THREAT TYPE

network

Trust: 0.6

sources: BID: 42039 // BID: 42020

TYPE

XSS

Trust: 0.6

sources: CNNVD: CNNVD-201007-313

CONFIGURATIONS

sources: JVNDB: JVNDB-2010-001845

PATCH

title:	HT4276	url:	http://support.apple.com/kb/HT4276	Trust: 0.8
title:	HT4276	url:	http://support.apple.com/kb/HT4276?viewlocale=ja_JP	Trust: 0.8

sources: JVNDB: JVNDB-2010-001845

EXTERNAL IDS

db:	NVD	id:	CVE-2010-1778	Trust: 2.8
db:	BID	id:	42020	Trust: 2.0
db:	JVNDB	id:	JVNDB-2010-001845	Trust: 0.8
db:	CNNVD	id:	CNNVD-201007-313	Trust: 0.7
db:	NSFOCUS	id:	15474	Trust: 0.6
db:	APPLE	id:	APPLE-SA-2010-07-28-1	Trust: 0.6
db:	BID	id:	42039	Trust: 0.4
db:	VULHUB	id:	VHN-44383	Trust: 0.1

sources: VULHUB: VHN-44383 // BID: 42039 // BID: 42020 // JVNDB: JVNDB-2010-001845 // CNNVD: CNNVD-201007-313 // NVD: CVE-2010-1778

REFERENCES

url:	http://lists.apple.com/archives/security-announce/2010//jul/msg00001.html	Trust: 1.7
url:	http://www.securityfocus.com/bid/42020	Trust: 1.7
url:	http://support.apple.com/kb/ht4276	Trust: 1.7
url:	https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a11639	Trust: 1.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2010-1778	Trust: 0.8
url:	http://jvn.jp/cert/jvnvu568637	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2010-1778	Trust: 0.8
url:	http://www.apple.com/safari/	Trust: 0.6
url:	http://www.nsfocus.net/vulndb/15474	Trust: 0.6

sources: VULHUB: VHN-44383 // BID: 42039 // BID: 42020 // JVNDB: JVNDB-2010-001845 // CNNVD: CNNVD-201007-313 // NVD: CVE-2010-1778

CREDITS

Jeremiah Grossman

Trust: 0.6

sources: CNNVD: CNNVD-201007-313

SOURCES

db:	VULHUB	id:	VHN-44383
db:	BID	id:	42039
db:	BID	id:	42020
db:	JVNDB	id:	JVNDB-2010-001845
db:	CNNVD	id:	CNNVD-201007-313
db:	NVD	id:	CVE-2010-1778

LAST UPDATE DATE

2024-11-23T20:46:00.293000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-44383	date:	2017-09-19T00:00:00
db:	BID	id:	42039	date:	2010-07-28T00:00:00
db:	BID	id:	42020	date:	2010-07-28T20:25:00
db:	JVNDB	id:	JVNDB-2010-001845	date:	2010-08-20T00:00:00
db:	CNNVD	id:	CNNVD-201007-313	date:	2010-08-03T00:00:00
db:	NVD	id:	CVE-2010-1778	date:	2024-11-21T01:15:10.873

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-44383	date:	2010-07-30T00:00:00
db:	BID	id:	42039	date:	2010-07-28T00:00:00
db:	BID	id:	42020	date:	2010-07-28T00:00:00
db:	JVNDB	id:	JVNDB-2010-001845	date:	2010-08-20T00:00:00
db:	CNNVD	id:	CNNVD-201007-313	date:	2010-07-22T00:00:00
db:	NVD	id:	CVE-2010-1778	date:	2010-07-30T20:30:01.880