WebKit, as used in Apple Safari before 4.1.3 and 5.0.x before 5.0.3 and Google Chrome before 6.0.472.62, does not properly perform a cast of an unspecified variable, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via an SVG element in a non-SVG document.
View Full Alert
Related Posts
CVE-2010-1823 (chrome, itunes, safari)Use-after-free vulnerability in WebKit before r65958, as used in Google Chrome before 6.0.472.59, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors…
CVE-2010-3412 (chrome)Race condition in the console implementation in Google Chrome before 6.0.472.59 has unspecified impact and attack vectors. View Full Alert
CVE-2010-3917 (chrome)Google Chrome before 3.0 does not properly handle XML documents, which allows remote attackers to obtain sensitive information via a crafted web site. View Full Alert
