WebKit, as used in Apple iTunes before 10.2 on Windows, does not properly access glyph data during layout actions for floating blocks associated with pseudo-elements, which allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsing, a different vulnerability than other CVEs listed in APPLE-SA-2011-03-02-1.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published: 2011-03-03T19:00:00

Updated: 2024-08-06T21:43:14.628Z

Reserved: 2010-12-23T00:00:00

Link: CVE-2011-0133

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2011-03-03T20:00:01.987

Modified: 2024-11-21T01:23:23.343

Link: CVE-2011-0133

cve-icon Redhat

No data.