ByteOS Network

CVE Vulnerability Details :

CVE-2010-3259

PUBLISHED

More Info Official Page

Assigner-mitre

Assigner Org ID-8254265b-2729-46b6-b9e3-3dfca2d5bfca

Published At-07 Sep, 2010 | 17:00

Updated At-07 Aug, 2024 | 03:03

▼CVE Numbering Authority (CNA)

WebKit, as used in Apple Safari before 4.1.3 and 5.0.x before 5.0.3, Google Chrome before 6.0.472.53, and webkitgtk before 1.2.6, does not properly restrict read access to images derived from CANVAS elements, which allows remote attackers to bypass the Same Origin Policy and obtain potentially sensitive image data via a crafted web site.

Affected Products

Vendor

n/a

Product

n/a

Versions

Affected

Problem Types

Type	CWE ID	Description
text	N/A	n/a

Type: text

CWE ID: N/A

Description: n/a

References

Hyperlink	Resource
http://www.mandriva.com/security/advisories?name=MDVSA-2011:039	vendor-advisory x_refsource_MANDRIVA
http://www.vupen.com/english/advisories/2010/2722	vdb-entry x_refsource_VUPEN
http://secunia.com/advisories/43068	third-party-advisory x_refsource_SECUNIA
http://www.ubuntu.com/usn/USN-1006-1	vendor-advisory x_refsource_UBUNTU
http://support.apple.com/kb/HT4455	x_refsource_CONFIRM
http://secunia.com/advisories/41856	third-party-advisory x_refsource_SECUNIA
http://www.vupen.com/english/advisories/2011/0212	vdb-entry x_refsource_VUPEN
https://technet.microsoft.com/library/security/msvr11-002	x_refsource_MISC
http://www.vupen.com/english/advisories/2010/3046	vdb-entry x_refsource_VUPEN
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11221	vdb-entry signature x_refsource_OVAL
http://www.vupen.com/english/advisories/2011/0216	vdb-entry x_refsource_VUPEN
http://secunia.com/advisories/43086	third-party-advisory x_refsource_SECUNIA
http://www.securityfocus.com/bid/44206	vdb-entry x_refsource_BID
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html	vendor-advisory x_refsource_SUSE
http://lists.apple.com/archives/security-announce/2010//Nov/msg00002.html	vendor-advisory x_refsource_APPLE
http://secunia.com/advisories/42314	third-party-advisory x_refsource_SECUNIA
http://www.redhat.com/support/errata/RHSA-2011-0177.html	vendor-advisory x_refsource_REDHAT
http://www.vupen.com/english/advisories/2011/0552	vdb-entry x_refsource_VUPEN
http://code.google.com/p/chromium/issues/detail?id=53001	x_refsource_CONFIRM
http://support.apple.com/kb/HT4456	x_refsource_CONFIRM
http://googlechromereleases.blogspot.com/2010/09/stable-and-beta-channel-updates.html	x_refsource_CONFIRM
http://lists.apple.com/archives/security-announce/2010//Nov/msg00003.html	vendor-advisory x_refsource_APPLE

Hyperlink: http://www.mandriva.com/security/advisories?name=MDVSA-2011:039

Resource:

vendor-advisory

x_refsource_MANDRIVA

Hyperlink: http://www.vupen.com/english/advisories/2010/2722

Resource:

vdb-entry

x_refsource_VUPEN

Hyperlink: http://secunia.com/advisories/43068

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://www.ubuntu.com/usn/USN-1006-1

Resource:

vendor-advisory

x_refsource_UBUNTU

Hyperlink: http://support.apple.com/kb/HT4455

Resource:

x_refsource_CONFIRM

Hyperlink: http://secunia.com/advisories/41856

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://www.vupen.com/english/advisories/2011/0212

Resource:

vdb-entry

x_refsource_VUPEN

Hyperlink: https://technet.microsoft.com/library/security/msvr11-002

Resource:

x_refsource_MISC

Hyperlink: http://www.vupen.com/english/advisories/2010/3046

Resource:

vdb-entry

x_refsource_VUPEN

Hyperlink: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11221

Resource:

vdb-entry

signature

x_refsource_OVAL

Hyperlink: http://www.vupen.com/english/advisories/2011/0216

Resource:

vdb-entry

x_refsource_VUPEN

Hyperlink: http://secunia.com/advisories/43086

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://www.securityfocus.com/bid/44206

Resource:

vdb-entry

x_refsource_BID

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: http://lists.apple.com/archives/security-announce/2010//Nov/msg00002.html

Resource:

vendor-advisory

x_refsource_APPLE

Hyperlink: http://secunia.com/advisories/42314

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://www.redhat.com/support/errata/RHSA-2011-0177.html

Resource:

vendor-advisory

x_refsource_REDHAT

Hyperlink: http://www.vupen.com/english/advisories/2011/0552

Resource:

vdb-entry

x_refsource_VUPEN

Hyperlink: http://code.google.com/p/chromium/issues/detail?id=53001

Resource:

x_refsource_CONFIRM

Hyperlink: http://support.apple.com/kb/HT4456

Resource:

x_refsource_CONFIRM

Hyperlink: http://googlechromereleases.blogspot.com/2010/09/stable-and-beta-channel-updates.html

Resource:

x_refsource_CONFIRM

Hyperlink: http://lists.apple.com/archives/security-announce/2010//Nov/msg00003.html

Resource:

vendor-advisory

x_refsource_APPLE

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
http://www.mandriva.com/security/advisories?name=MDVSA-2011:039	vendor-advisory x_refsource_MANDRIVA x_transferred
http://www.vupen.com/english/advisories/2010/2722	vdb-entry x_refsource_VUPEN x_transferred
http://secunia.com/advisories/43068	third-party-advisory x_refsource_SECUNIA x_transferred
http://www.ubuntu.com/usn/USN-1006-1	vendor-advisory x_refsource_UBUNTU x_transferred
http://support.apple.com/kb/HT4455	x_refsource_CONFIRM x_transferred
http://secunia.com/advisories/41856	third-party-advisory x_refsource_SECUNIA x_transferred
http://www.vupen.com/english/advisories/2011/0212	vdb-entry x_refsource_VUPEN x_transferred
https://technet.microsoft.com/library/security/msvr11-002	x_refsource_MISC x_transferred
http://www.vupen.com/english/advisories/2010/3046	vdb-entry x_refsource_VUPEN x_transferred
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11221	vdb-entry signature x_refsource_OVAL x_transferred
http://www.vupen.com/english/advisories/2011/0216	vdb-entry x_refsource_VUPEN x_transferred
http://secunia.com/advisories/43086	third-party-advisory x_refsource_SECUNIA x_transferred
http://www.securityfocus.com/bid/44206	vdb-entry x_refsource_BID x_transferred
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html	vendor-advisory x_refsource_SUSE x_transferred
http://lists.apple.com/archives/security-announce/2010//Nov/msg00002.html	vendor-advisory x_refsource_APPLE x_transferred
http://secunia.com/advisories/42314	third-party-advisory x_refsource_SECUNIA x_transferred
http://www.redhat.com/support/errata/RHSA-2011-0177.html	vendor-advisory x_refsource_REDHAT x_transferred
http://www.vupen.com/english/advisories/2011/0552	vdb-entry x_refsource_VUPEN x_transferred
http://code.google.com/p/chromium/issues/detail?id=53001	x_refsource_CONFIRM x_transferred
http://support.apple.com/kb/HT4456	x_refsource_CONFIRM x_transferred
http://googlechromereleases.blogspot.com/2010/09/stable-and-beta-channel-updates.html	x_refsource_CONFIRM x_transferred
http://lists.apple.com/archives/security-announce/2010//Nov/msg00003.html	vendor-advisory x_refsource_APPLE x_transferred