CVE-2010-1119

Exp

Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, Safari before 4.1 on Mac OS X 10.4, and Safari on Apple iPhone OS allows remote attackers to execute arbitrary code or cause a denial of service (application crash), or read the SMS database or other data, via vectors related to "attribute manipulation," as demonstrated by Vincenzo Iozzo and Ralf Philipp Weinmann during a Pwn2Own competition at CanSecWest 2010.

Published: 2010-03-25 Last update: 2026-04-29 Assigner: [email protected] Source: [email protected]
NVD Status:ModifiedCVE State: published
View at NVD, CVE.org, EUVD

CVE-2010-1119 is rated High Exploit Risk (88.7/100): CVSS Critical severity, with high exploitation likelihood (EPSS 52.40%, 98th percentile). 1 public exploit reference(s) are indexed (Exploit-DB). Public exploits are available—assess exposure, apply mitigations, and prioritize patching.

Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.

Public exploit references (Exploit-DB) for CVE-2010-1119

EDB-ID Source Kind Published Link
16974 exploit_db edb 2011-03-14 Exploit-DB ↗

Exploit prediction scoring system (EPSS) score for CVE-2010-1119

EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).

# Date Old EPSS score New EPSS score Delta (New - Old)
1 2026-05-24 52.97% 52.40% -0.57%
2 2026-05-22 59.15% 52.97% -6.18%
3 2026-05-11 59.15%

Full EPSS history (19 records total)

Common vulnerability scoring system (CVSS) metrics for CVE-2010-1119

CVSS metrics for this CVE.

Base score Version Severity Vector Exploitability Impact Score source
10.0 2.0 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C Click to expand
Access vector (AV:N)
Can be exploited remotely over network reachability.
Access complexity (AC:L)
Exploitation conditions are straightforward and predictable.
Authentication (AU:N)
No authentication is required.
Confidentiality impact (C:C)
Complete confidentiality impact.
Integrity impact (I:C)
Complete integrity impact.
Availability impact (A:C)
Complete availability impact.
 10.0 10.0 [email protected]

Weakness enumeration for CVE-2010-1119

OS Trackers for CVE-2010-1119

vendor priority summary link
redhat critical https://access.redhat.com/security/cve/CVE-2010-1119

Affected software / configurations for CVE-2010-1119

Vendor Product Version Raw CPE
apple safari <= 4.0.5 cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*
apple safari 1.0 cpe:2.3:a:apple:safari:1.0:*:*:*:*:*:*:*
apple safari 1.0 cpe:2.3:a:apple:safari:1.0:beta:*:*:*:*:*:*
apple safari 1.0 cpe:2.3:a:apple:safari:1.0:beta2:*:*:*:*:*:*
apple safari 1.0.0 cpe:2.3:a:apple:safari:1.0.0:*:*:*:*:*:*:*
apple safari 1.0.0b1 cpe:2.3:a:apple:safari:1.0.0b1:*:*:*:*:*:*:*
apple safari 1.0.0b2 cpe:2.3:a:apple:safari:1.0.0b2:*:*:*:*:*:*:*
apple safari 1.0.1 cpe:2.3:a:apple:safari:1.0.1:*:*:*:*:*:*:*
apple safari 1.0.2 cpe:2.3:a:apple:safari:1.0.2:*:*:*:*:*:*:*
apple safari 1.0.3 cpe:2.3:a:apple:safari:1.0.3:*:*:*:*:*:*:*
apple safari 1.0.3 cpe:2.3:a:apple:safari:1.0.3:85.8:*:*:*:*:*:*
apple safari 1.0.3 cpe:2.3:a:apple:safari:1.0.3:85.8.1:*:*:*:*:*:*
apple safari 1.1 cpe:2.3:a:apple:safari:1.1:*:*:*:*:*:*:*
apple safari 1.1.0 cpe:2.3:a:apple:safari:1.1.0:*:*:*:*:*:*:*
apple safari 1.1.1 cpe:2.3:a:apple:safari:1.1.1:*:*:*:*:*:*:*
apple safari 1.2 cpe:2.3:a:apple:safari:1.2:*:*:*:*:*:*:*
apple safari 1.2.0 cpe:2.3:a:apple:safari:1.2.0:*:*:*:*:*:*:*
apple safari 1.2.1 cpe:2.3:a:apple:safari:1.2.1:*:*:*:*:*:*:*
apple safari 1.2.2 cpe:2.3:a:apple:safari:1.2.2:*:*:*:*:*:*:*
apple safari 1.2.3 cpe:2.3:a:apple:safari:1.2.3:*:*:*:*:*:*:*
apple safari 1.2.4 cpe:2.3:a:apple:safari:1.2.4:*:*:*:*:*:*:*
apple safari 1.2.5 cpe:2.3:a:apple:safari:1.2.5:*:*:*:*:*:*:*
apple safari 1.3 cpe:2.3:a:apple:safari:1.3:*:*:*:*:*:*:*
apple safari 1.3.0 cpe:2.3:a:apple:safari:1.3.0:*:*:*:*:*:*:*
apple safari 1.3.1 cpe:2.3:a:apple:safari:1.3.1:*:*:*:*:*:*:*
apple safari 1.3.2 cpe:2.3:a:apple:safari:1.3.2:*:*:*:*:*:*:*
apple safari 1.3.2 cpe:2.3:a:apple:safari:1.3.2:312.5:*:*:*:*:*:*
apple safari 1.3.2 cpe:2.3:a:apple:safari:1.3.2:312.6:*:*:*:*:*:*
apple safari 2 cpe:2.3:a:apple:safari:2:*:*:*:*:*:*:*
apple safari 2.0 cpe:2.3:a:apple:safari:2.0:*:*:*:*:*:*:*
apple safari 2.0.0 cpe:2.3:a:apple:safari:2.0.0:*:*:*:*:*:*:*
apple safari 2.0.1 cpe:2.3:a:apple:safari:2.0.1:*:*:*:*:*:*:*
apple safari 2.0.2 cpe:2.3:a:apple:safari:2.0.2:*:*:*:*:*:*:*
apple safari 2.0.3 cpe:2.3:a:apple:safari:2.0.3:*:*:*:*:*:*:*
apple safari 2.0.3 cpe:2.3:a:apple:safari:2.0.3:417.8:*:*:*:*:*:*
apple safari 2.0.3 cpe:2.3:a:apple:safari:2.0.3:417.9:*:*:*:*:*:*
apple safari 2.0.3 cpe:2.3:a:apple:safari:2.0.3:417.9.2:*:*:*:*:*:*
apple safari 2.0.3 cpe:2.3:a:apple:safari:2.0.3:417.9.3:*:*:*:*:*:*
apple safari 2.0.4 cpe:2.3:a:apple:safari:2.0.4:*:*:*:*:*:*:*
apple safari 3 cpe:2.3:a:apple:safari:3:*:*:*:*:*:*:*
apple safari 3.0 cpe:2.3:a:apple:safari:3.0:*:*:*:*:*:*:*
apple safari 3.0.0 cpe:2.3:a:apple:safari:3.0.0:*:*:*:*:*:*:*
apple safari 3.0.0b cpe:2.3:a:apple:safari:3.0.0b:*:*:*:*:*:*:*
apple safari 3.0.1 cpe:2.3:a:apple:safari:3.0.1:*:*:*:*:*:*:*
apple safari 3.0.1 cpe:2.3:a:apple:safari:3.0.1:beta:*:*:*:*:*:*
apple safari 3.0.1b cpe:2.3:a:apple:safari:3.0.1b:*:*:*:*:*:*:*
apple safari 3.0.2 cpe:2.3:a:apple:safari:3.0.2:*:*:*:*:*:*:*
apple safari 3.0.2b cpe:2.3:a:apple:safari:3.0.2b:*:*:*:*:*:*:*
apple safari 3.0.3 cpe:2.3:a:apple:safari:3.0.3:*:*:*:*:*:*:*
apple safari 3.0.3b cpe:2.3:a:apple:safari:3.0.3b:*:*:*:*:*:*:*
apple safari 3.0.4 cpe:2.3:a:apple:safari:3.0.4:*:*:*:*:*:*:*
apple safari 3.0.4b cpe:2.3:a:apple:safari:3.0.4b:*:*:*:*:*:*:*
apple safari 3.1 cpe:2.3:a:apple:safari:3.1:*:*:*:*:*:*:*
apple safari 3.1.0 cpe:2.3:a:apple:safari:3.1.0:*:*:*:*:*:*:*
apple safari 3.1.0b cpe:2.3:a:apple:safari:3.1.0b:*:*:*:*:*:*:*
apple safari 3.1.1 cpe:2.3:a:apple:safari:3.1.1:*:*:*:*:*:*:*
apple safari 3.1.2 cpe:2.3:a:apple:safari:3.1.2:*:*:*:*:*:*:*
apple safari 3.2.0 cpe:2.3:a:apple:safari:3.2.0:*:*:*:*:*:*:*
apple safari 3.2.1 cpe:2.3:a:apple:safari:3.2.1:*:*:*:*:*:*:*
apple safari 3.2.2 cpe:2.3:a:apple:safari:3.2.2:*:*:*:*:*:*:*
apple safari 3.2.3 cpe:2.3:a:apple:safari:3.2.3:*:*:*:*:*:*:*
apple safari 4.0 cpe:2.3:a:apple:safari:4.0:*:*:*:*:*:*:*
apple safari 4.0 cpe:2.3:a:apple:safari:4.0:beta:*:*:*:*:*:*
apple safari 4.0.0b cpe:2.3:a:apple:safari:4.0.0b:*:*:*:*:*:*:*
apple safari 4.0.1 cpe:2.3:a:apple:safari:4.0.1:*:*:*:*:*:*:*
apple safari 4.0.2 cpe:2.3:a:apple:safari:4.0.2:*:*:*:*:*:*:*
apple safari 4.0.3 cpe:2.3:a:apple:safari:4.0.3:*:*:*:*:*:*:*
apple safari 4.0.4 cpe:2.3:a:apple:safari:4.0.4:*:*:*:*:*:*:*
apple safari 4.1 cpe:2.3:a:apple:safari:4.1:*:*:*:*:*:*:*
apple mac_os_x 10.5 cpe:2.3:o:apple:mac_os_x:10.5:*:*:*:*:*:*:*
apple mac_os_x 10.5.0 cpe:2.3:o:apple:mac_os_x:10.5.0:*:*:*:*:*:*:*
apple mac_os_x 10.5.1 cpe:2.3:o:apple:mac_os_x:10.5.1:*:*:*:*:*:*:*
apple mac_os_x 10.5.2 cpe:2.3:o:apple:mac_os_x:10.5.2:*:*:*:*:*:*:*
apple mac_os_x 10.5.3 cpe:2.3:o:apple:mac_os_x:10.5.3:*:*:*:*:*:*:*
apple mac_os_x 10.5.4 cpe:2.3:o:apple:mac_os_x:10.5.4:*:*:*:*:*:*:*
apple mac_os_x 10.5.5 cpe:2.3:o:apple:mac_os_x:10.5.5:*:*:*:*:*:*:*
apple mac_os_x 10.5.6 cpe:2.3:o:apple:mac_os_x:10.5.6:*:*:*:*:*:*:*
apple mac_os_x 10.5.7 cpe:2.3:o:apple:mac_os_x:10.5.7:*:*:*:*:*:*:*
apple mac_os_x 10.5.8 cpe:2.3:o:apple:mac_os_x:10.5.8:*:*:*:*:*:*:*
apple mac_os_x 10.6.0 cpe:2.3:o:apple:mac_os_x:10.6.0:*:*:*:*:*:*:*

References for CVE-2010-1119

URL Tags
http://dvlabs.tippingpoint.com/blog/2010/02/15/pwn2own-2010
http://lists.apple.com/archives/security-announce/2010//Jun/msg00002.html Vendor Advisory
http://lists.apple.com/archives/security-announce/2010/Jun/msg00000.html Patch Vendor Advisory
http://lists.apple.com/archives/security-announce/2010/Jun/msg00003.html Vendor Advisory
http://news.cnet.com/8301-27080_3-20001126-245.html
http://secunia.com/advisories/40105 Vendor Advisory
http://secunia.com/advisories/40196 Vendor Advisory
http://securityreason.com/securityalert/8128
http://securitytracker.com/id?1024067
http://support.apple.com/kb/HT4196 Vendor Advisory
http://support.apple.com/kb/HT4220 Vendor Advisory
http://support.apple.com/kb/HT4225 Vendor Advisory
http://twitter.com/thezdi/statuses/11001080021
http://www.securityfocus.com/bid/40620
http://www.vupen.com/english/advisories/2010/1373 Vendor Advisory
http://www.vupen.com/english/advisories/2010/1512 Vendor Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7037
cvelogic Threat Intelligence