CVE-2010-3805

Loading...

General

Score:9.3/10.0
Severity:High
Category:Numeric Error

Impact Metrics

Confidentiality:Complete
Integrity:Complete
Availability:Complete

Exploitability Metrics

Access Vector:Network
Access Complexity:Medium
Authentication:None

Relative vulnerabilities

CVE-2010-1812, CVE-2010-1813, CVE-2010-1814, CVE-2010-1815, CVE-2010-1822, CVE-2010-3116, CVE-2010-3257, CVE-2010-3259, CVE-2010-3803, CVE-2010-3804, CVE-2010-3808, CVE-2010-3809, CVE-2010-3810, CVE-2010-3811, CVE-2010-3812, CVE-2010-3813, CVE-2010-3816, CVE-2010-3817, CVE-2010-3818, CVE-2010-3819, CVE-2010-3820, CVE-2010-3821, CVE-2010-3822, CVE-2010-3823, CVE-2010-3824, CVE-2010-3826

Published on 22/11/10 - Updated on 19/09/17

Description

Integer underflow in WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.3 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors involving WebSockets. NOTE: this may overlap CVE-2010-3254.

Category: Numeric Error

CWE-189 (Numeric Errors)
Weaknesses in this category are related to improper calculation or conversion of numbers.

Security Notices

US National Vulnerability DatabaseCVE-2010-3805
Agence Nationale de la Sécurité des Systèmes d'Information CERTA-2010-AVI-558, CERTA-2010-AVI-565
Renater 2010/VULN469

Exploits

No exploits available for this CVE in our database.

Relative technologies

VendorProduct
applesafari
applewebkit

Share this vulnerability with:

Twitter Facebook LinkedIn Mail