Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2010-1029

EPSS 35.17% · P97
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2010-1029

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Stack consumption vulnerability in the WebCore::CSSSelector function in WebKit, as used in Apple Safari 4.0.4, Apple Safari on iPhone OS and iPhone OS for iPod touch, and Google Chrome 4.0.249, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a STYLE element composed of a large number of *> sequences.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
WebKit样式标签远程拒绝服务漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
WebKit是KDE、苹果(Apple)、谷歌(Google)等公司共同开发的一套开源Web浏览器引擎,目前被Apple Safari及Google Chrome等浏览器使用。 WebKit中所使用的WebCore::CSSSelector函数存在栈耗尽漏洞。用户在HTML网页的STYLE元素中包含有大量的"*>"字符就会导致浏览器崩溃。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2010-1029

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2010-1029

Please Login to view more intelligence information

Same Patch Batch · n/a · 2010-03-19 · 35 CVEs total

CVE-2010-1020TYPO3 Simple Gallery (sk_simplegallery) 跨站脚本攻击漏洞
CVE-2010-1012TYPO3 CleanDB 扩展件未明SQL注入漏洞
CVE-2010-1013TYPO3 Diocese of Portsmouth Database 扩展件 Diocese模块SQL注入漏洞
CVE-2010-1014TYPO3 Reports Logfile View 扩展件跨站脚本攻击漏洞
CVE-2010-1015TYPO3 SAV Filter Alphabetic 扩展件SQL注入漏洞
CVE-2010-1016TYPO3 SAV Filter Selectors 扩展件SQL注入漏洞
CVE-2010-1017TYPO3 SAV Filter Months 扩展件SQL注入漏洞
CVE-2010-1018TYPO3 Book Reviews 未明SQL注入漏洞
CVE-2010-1019TYPO3 Simple Gallery (sk_simplegallery) SQL注入漏洞
CVE-2010-1011TYPO3 myDashboard (mydashboard) 扩展件未明跨站脚本攻击漏洞
CVE-2010-1021TYPO3 Typo3 Quixplorer扩展件未明跨站脚本攻击漏洞
CVE-2010-1022TYPO3 Security - Salted User Password Hashes 安全绕过漏洞
CVE-2010-1023TYPO3 UserTask Cente和Recent (taskcenter_recent)跨站脚本漏洞
CVE-2010-1024TYPO3 TGM-Newsletter (tgm_newsletter) SQL注入漏洞
CVE-2010-1025TYPO3 TGM-Newsletter (tgm_newsletter) 跨站脚本攻击漏洞
CVE-2010-1026TYPO3 CleanDB - DBAL (tmsw_cleandb) 扩展件未明SQL注入漏洞
CVE-2010-1027TYPO3 Meet Travelmates (travelmate) 未明SQL注入漏洞
CVE-2010-0736ViewVC view_queryform函数跨站脚本漏洞
CVE-2010-0688Orbital Viewer .orb或.ov文件栈缓冲区溢出漏洞
CVE-2010-1003eFront 'www/editor/tiny_mce/langs/language.php' 目录遍历漏洞

Showing top 20 of 35 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2010-1029

No comments yet

Leave a comment