Unrated severityNVD Advisory· Published Mar 15, 2010· Updated Apr 29, 2026
CVE-2010-0051
CVE-2010-0051
Description
WebKit in Apple Safari before 4.0.5 does not properly validate the cross-origin loading of stylesheets, which allows remote attackers to obtain sensitive information via a crafted HTML document. NOTE: this might overlap CVE-2010-0651.
Affected products
6cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*range: <=4.0.4
- cpe:2.3:a:apple:safari:4.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:4.0.0b:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:4.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:4.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:4.0.3:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
23- www.securityfocus.com/bid/38671nvdPatch
- lists.apple.com/archives/security-announce/2010/Mar/msg00000.htmlnvdVendor Advisory
- support.apple.com/kb/HT4070nvdVendor Advisory
- code.google.com/p/chromium/issues/detailnvd
- lists.apple.com/archives/security-announce/2010//Nov/msg00003.htmlnvd
- lists.apple.com/archives/security-announce/2010/Jun/msg00003.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.htmlnvd
- osvdb.org/62944nvd
- scarybeastsecurity.blogspot.com/2009/12/generic-cross-browser-cross-domain.htmlnvd
- secunia.com/advisories/41856nvd
- secunia.com/advisories/42314nvd
- secunia.com/advisories/43068nvd
- support.apple.com/kb/HT4225nvd
- support.apple.com/kb/HT4456nvd
- websec.sv.cmu.edu/css/css.pdfnvd
- www.mandriva.com/security/advisoriesnvd
- www.securitytracker.com/idnvd
- www.ubuntu.com/usn/USN-1006-1nvd
- www.vupen.com/english/advisories/2010/2722nvd
- www.vupen.com/english/advisories/2011/0212nvd
- www.vupen.com/english/advisories/2011/0552nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/56837nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7554nvd
News mentions
0No linked articles in our index yet.