Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2008-1590
HistoryJul 14, 2008 - 6:41 p.m.

CVE-2008-1590

2008-07-1418:41:00
CWE-399
[email protected]
web.nvd.nist.gov
23
cve-2008-1590
javascriptcore
webkit
apple
iphone
ipod touch
remote attackers
arbitrary code
denial of service

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.7 High

AI Score

Confidence

Low

0.783 High

EPSS

Percentile

98.3%

JSON

JavaScriptCore in WebKit on Apple iPhone before 2.0 and iPod touch before 2.0 does not properly perform runtime garbage collection, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors that trigger memory corruption, a different vulnerability than CVE-2008-2317.

Affected configurations

NVD
Node
appleiphoneMatch1.0
OR
appleiphoneMatch1.1.3
OR
appleiphoneMatch1.1.4
OR
appleiphoneMatch1.02
OR
appleipod_touchMatch1.1
OR
appleipod_touchMatch1.1.1
OR
appleipod_touchMatch1.1.2
OR
appleipod_touchMatch1.1.3
OR
appleipod_touchMatch1.1.4
OR
appleiphone_osMatch1.0.1
OR
appleiphone_osMatch1.0.2
OR
appleiphone_osMatch1.1.1
OR
appleiphone_osMatch1.1.2
AND
webkitjavascriptcore

Related

nvd 2
cvelist 2
prion 2
cve 1
seebug 1
zdi 1
securityvulns 2
nessus 3
nvd
nvd
CVE-2008-1590
2008-07-14 18:41:00
CVE-2008-2317
2008-07-14 18:41:00
cvelist
cvelist
CVE-2008-2317
2008-07-14 18:00:00
CVE-2008-1590
2008-07-14 18:00:00
prion
prion
Memory corruption
2008-07-14 18:41:00
Design/Logic Flaw
2008-07-14 18:41:00
cve
cve
CVE-2008-2317
2008-07-14 18:41:00
seebug
seebug
Apple iPhoneๅ’ŒiPod Touch 2.0็‰ˆไฟฎๅคๅคšไธชๅฎ‰ๅ…จๆผๆดž
2008-07-14 00:00:00
zdi
zdi
Apple Safari StyleSheet ownerNode Heap Corruption Vulnerability
2008-07-25 00:00:00
securityvulns
securityvulns
Apple Safari memory corruption
2008-07-26 00:00:00
ZDI-08-045: Apple Safari StyleSheet ownerNode Heap Corruption Vulnerability
2008-07-26 00:00:00
nessus
nessus
Safari < 3.2 Multiple Vulnerabilities
2008-11-14 00:00:00
Mac OS X : Apple Safari < 3.2
2008-11-14 00:00:00
Safari < 3.2 Multiple Vulnerabilities
2008-11-14 00:00:00

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.7 High

AI Score

Confidence

Low

0.783 High

EPSS

Percentile

98.3%

JSON
Related for CVE-2008-1590
nvd2cvelist2prion2cve1seebug1zdi1securityvulns2nessus3