CVE-2010-1807: Input Validation
First published: Thu Aug 26 2010(Updated: )
An input validation issue exists in WebKit's handling of floating point data types. Visiting a maliciously crafted website may lead to an unexpected application termination or arbitrary code execution. This issue is addressed through improved validation of floating point values. Credit to Luke Wagner of Mozilla for reporting this issue. References: <a href="https://bugs.webkit.org/show_bug.cgi?id=43461">https://bugs.webkit.org/show_bug.cgi?id=43461</a> <a href="http://trac.webkit.org/changeset/64706">http://trac.webkit.org/changeset/64706</a>
Credit: product-security@apple.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apple Mobile Safari | =4.0.2 | |
| Apple Mobile Safari | =4.0.1 | |
| Apple Mobile Safari | =4.0.5 | |
| Apple Mobile Safari | =4.0-beta | |
| Apple Mobile Safari | =4.0.3 | |
| Apple Mobile Safari | =4.1.1 | |
| Apple Mobile Safari | =4.1 | |
| Apple Mobile Safari | =4.0 | |
| Apple Mobile Safari | =4.0.0b | |
| Apple Mobile Safari | =4.0.4 | |
| Apple Mobile Safari | =5.0.1 | |
| Apple Mobile Safari | =5.0 | |
| Android | <=2.1 | |
| Android | =1.0 | |
| Android | =1.6 | |
| Android | =2.0 | |
| Android | =1.5 | |
| Android | =1.1 | |
| WebKitGTK+ | =1.2.3 | |
| WebKitGTK+ | =1.2.0 | |
| WebKitGTK+ | =1.2.2 | |
| WebKitGTK+ | <=1.2.5 | |
| WebKitGTK+ | =1.2.4 | |
| WebKitGTK+ | =1.2.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://bugs.webkit.org/show_bug.cgi?id=43461
- http://trac.webkit.org/changeset/64706
- http://support.apple.com/kb/HT4333
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=640382
- https://rhn.redhat.com/errata/RHSA-2011-0177.html
- https://bugzilla.redhat.com/show_bug.cgi?id=627703
- http://lists.apple.com/archives/security-announce/2010//Sep/msg00001.html
- http://www.securityfocus.com/bid/43047
- http://www.vupen.com/english/advisories/2010/2722
- http://www.ubuntu.com/usn/USN-1006-1
- http://secunia.com/advisories/41856
- http://www.computerworld.com/s/article/9195058/Researcher_to_release_Web_based_Android_attack
- http://support.apple.com/kb/HT4456
- http://lists.apple.com/archives/security-announce/2010//Nov/msg00003.html
- http://www.vupen.com/english/advisories/2010/3046
- http://secunia.com/advisories/42314
- http://secunia.com/advisories/43068
- http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html
- http://www.vupen.com/english/advisories/2011/0212
- http://www.redhat.com/support/errata/RHSA-2011-0177.html
- http://secunia.com/advisories/43086
- http://www.vupen.com/english/advisories/2011/0216
- http://www.mandriva.com/security/advisories?name=MDVSA-2011:039
- http://www.vupen.com/english/advisories/2011/0552
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11964
Frequently Asked Questions
What is the severity of CVE-2010-1807?
CVE-2010-1807 has been classified as a high severity vulnerability due to its potential to cause application termination or arbitrary code execution.
How do I fix CVE-2010-1807?
To address CVE-2010-1807, users should update to the latest version of affected software, which includes improved validation of floating point values.
Which software versions are affected by CVE-2010-1807?
CVE-2010-1807 affects multiple versions of Apple Safari, Google Android, and WebKitGTK+, including several 4.x versions of Safari.
What type of vulnerability is CVE-2010-1807?
CVE-2010-1807 is an input validation vulnerability specifically related to the handling of floating point data types in WebKit.
Can CVE-2010-1807 be exploited remotely?
Yes, CVE-2010-1807 can be exploited remotely by visiting a maliciously crafted website.
- agent/first-publish-date
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/remedy
- agent/references
- agent/author
- agent/last-modified-date
- agent/severity
- agent/description
- agent/event
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2010-1807
- agent/weakness
- agent/trending
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/apple
- canonical/apple mobile safari
- version/apple mobile safari/4.0.2
- version/apple mobile safari/4.0.1
- version/apple mobile safari/4.0.5
- version/apple mobile safari/4.0-beta
- version/apple mobile safari/4.0.3
- version/apple mobile safari/4.1.1
- version/apple mobile safari/4.1
- version/apple mobile safari/4.0
- version/apple mobile safari/4.0.0b
- version/apple mobile safari/4.0.4
- version/apple mobile safari/5.0.1
- version/apple mobile safari/5.0
- vendor/google
- canonical/android
- version/android/2.1
- version/android/1.0
- version/android/1.6
- version/android/2.0
- version/android/1.5
- version/android/1.1
- vendor/webkitgtk
- canonical/webkitgtk+
- version/webkitgtk+/1.2.3
- version/webkitgtk+/1.2.0
- version/webkitgtk+/1.2.2
- version/webkitgtk+/1.2.5
- version/webkitgtk+/1.2.4
- version/webkitgtk+/1.2.1