CVE-2010-1822

WebKit, as used in Apple Safari before 4.1.3 and 5.0.x before 5.0.3 and Google Chrome before 6.0.472.62, does not properly perform a cast of an unspecified variable, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via an SVG element in a non-SVG document.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:o:opensuse:opensuse:11.2:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:11.3:*:*:*:*:*:*:*

History

No history.

Information

Published : 2010-10-04 21:00

Updated : 2024-02-28 11:41


NVD link : CVE-2010-1822

Mitre link : CVE-2010-1822

CVE.ORG link : CVE-2010-1822


JSON object : View

Products Affected

apple

  • safari

google

  • chrome

opensuse

  • opensuse
CWE
CWE-704

Incorrect Type Conversion or Cast