What is the severity of CVE-2010-0050?

CVE-2010-0050 is classified as a critical vulnerability due to its potential to allow remote code execution.

How do I fix CVE-2010-0050?

To fix CVE-2010-0050, you should update affected versions of Apple Safari to version 4.0.5 or later.

What versions of Safari are affected by CVE-2010-0050?

CVE-2010-0050 affects Apple Safari versions up to 4.0.4, including versions 4.0.0b to 4.0.4.

Can CVE-2010-0050 cause denial of service?

Yes, CVE-2010-0050 can cause a denial of service by crashing the Safari application.

What type of vulnerability is CVE-2010-0050?

CVE-2010-0050 is a use-after-free vulnerability found in the WebKit component of Apple Safari.

Vulnerability/
CVE-2010-0050

critical

9.3

CWE

399 416

12/3/2010

7/8/2024

CVE-2010-0050: Use After Free

First published: Fri Mar 12 2010(Updated: )

Use-after-free vulnerability in WebKit in Apple Safari before 4.0.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via an HTML document with improperly nested tags.

Credit: product-security@apple.com

Affected Software	Affected Version	How to fix
Apple Mobile Safari	=4.0.2
Apple Mobile Safari	=4.0.1
Apple Mobile Safari	<=4.0.4
Apple Mobile Safari	=4.0.3
Apple Mobile Safari	=4.0
Apple Mobile Safari	=4.0.0b
Apple Mobile Safari	<4.0.5
iStyle @cosme iPhone OS	>=2.0<4.0
Fedora	=11
Fedora	=12
Fedora	=13
Ubuntu Linux	=9.10
Ubuntu Linux	=10.04
Ubuntu Linux	=10.10
Open edX	=11.2
Open edX	=11.3

Remedy

http://www.securityfocus.com/bid/38671

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2010-0050?
CVE-2010-0050 is classified as a critical vulnerability due to its potential to allow remote code execution.
How do I fix CVE-2010-0050?
To fix CVE-2010-0050, you should update affected versions of Apple Safari to version 4.0.5 or later.
What versions of Safari are affected by CVE-2010-0050?
CVE-2010-0050 affects Apple Safari versions up to 4.0.4, including versions 4.0.0b to 4.0.4.
Can CVE-2010-0050 cause denial of service?
Yes, CVE-2010-0050 can cause a denial of service by crashing the Safari application.
What type of vulnerability is CVE-2010-0050?
CVE-2010-0050 is a use-after-free vulnerability found in the WebKit component of Apple Safari.

agent/type
agent/weakness
agent/references
agent/severity
agent/remedy
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/first-publish-date
agent/event
agent/source
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
agent/author
agent/softwarecombine
agent/tags
collector/nvd-api
source/NVD
agent/software-canonical-lookup
vendor/apple
canonical/apple mobile safari
version/apple mobile safari/4.0.2
version/apple mobile safari/4.0.1
version/apple mobile safari/4.0.4
version/apple mobile safari/4.0.3
version/apple mobile safari/4.0
version/apple mobile safari/4.0.0b
canonical/istyle @cosme iphone os
version/istyle @cosme iphone os/2.0
vendor/fedoraproject
canonical/fedora
version/fedora/11
version/fedora/12
version/fedora/13
vendor/canonical
canonical/ubuntu linux
version/ubuntu linux/9.10
version/ubuntu linux/10.04
version/ubuntu linux/10.10
vendor/opensuse
canonical/open edx
version/open edx/11.2
version/open edx/11.3