CVE-2010-1939

Name of the Vulnerable Software and Affected Versions Apple Safari version 4.0.5

Description The issue is related to a use-after-free vulnerability that allows remote attackers to execute arbitrary code. This can be achieved by creating a popup window for a crafted HTML document using window.open, and then calling the parent window's close method. This triggers improper handling of a deleted window object.

Recommendations For Apple Safari version 4.0.5, consider disabling the use of window.open to create popup windows for external HTML documents until a patch is available. Restrict access to potentially malicious websites to minimize the risk of exploitation.