Vulnerability Description
The WebCore::HTMLLinkElement::process function in WebCore/html/HTMLLinkElement.cpp in WebKit, as used in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.3 on Mac OS X 10.4; webkitgtk before 1.2.6; and possibly other products does not verify whether DNS prefetching is enabled when processing an HTML LINK element, which allows remote attackers to bypass intended access restrictions, as demonstrated by an HTML e-mail message that uses a LINK element for X-Confirm-Reading-To functionality.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | Safari | <= 5.0.2 |
| Apple | Webkit | All versions |
| Apple | Mac Os X | 10.5 |
| Apple | Mac Os X Server | 10.5 |
| Microsoft | Windows 7 | All versions |
| Microsoft | Windows Vista | All versions |
| Microsoft | Windows Xp | All versions |
Related Weaknesses (CWE)
References
- http://lists.apple.com/archives/security-announce/2010//Nov/msg00002.htmlVendor Advisory
- http://lists.apple.com/archives/security-announce/2010//Nov/msg00003.html
- http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052906.ht
- http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html
- http://secunia.com/advisories/42314
- http://secunia.com/advisories/43068
- http://secunia.com/advisories/43086
- http://support.apple.com/kb/HT4455PatchVendor Advisory
- http://support.apple.com/kb/HT4456
- http://trac.webkit.org/changeset/63622
- http://www.mandriva.com/security/advisories?name=MDVSA-2011:039
- http://www.redhat.com/support/errata/RHSA-2011-0177.html
- http://www.vupen.com/english/advisories/2010/3046
- http://www.vupen.com/english/advisories/2011/0212
- http://www.vupen.com/english/advisories/2011/0216
FAQ
What is CVE-2010-3813?
CVE-2010-3813 is a vulnerability with a CVSS score of 5.8 (MEDIUM). The WebCore::HTMLLinkElement::process function in WebCore/html/HTMLLinkElement.cpp in WebKit, as used in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.3 on Mac OS...
How severe is CVE-2010-3813?
CVE-2010-3813 has been rated MEDIUM with a CVSS base score of 5.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2010-3813?
Check the references section above for vendor advisories and patch information. Affected products include: Apple Safari, Apple Webkit, Apple Mac Os X, Apple Mac Os X Server, Microsoft Windows 7.