Lucene search

[email protected]CVE-2008-2000

HistoryApr 28, 2008 - 8:05 p.m.

CVE-2008-2000

2008-04-2820:05:00

CWE-399

[email protected]

web.nvd.nist.gov

cve-2008-2000

apple safari

denial of service

remote attack

javascript

nvd

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

6.4 Medium

AI Score

Confidence

High

0.153 Low

EPSS

Percentile

95.9%

JSON

Unspecified vulnerability in Apple Safari 3.1.1 allows remote attackers to cause a denial of service (application crash) via JavaScript code that calls document.write in an infinite loop.

Affected configurations

NVD

Node

applesafariMatch3.1.1

CPENameOperatorVersion
apple:safariapple safarieq3.1.1

CPE	Name	Operator	Version
apple:safari	apple safari	eq	3.1.1

References

es.geocities.com/jplopezy/pruebasafari3.html

securityreason.com/securityalert/3833

www.securityfocus.com/archive/1/491192/100/0/threaded

www.vupen.com/english/advisories/2008/1347

exchange.xforce.ibmcloud.com/vulnerabilities/41985

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

6.4 Medium

AI Score

Confidence

High

0.153 Low

EPSS

Percentile

95.9%

JSON

Related for CVE-2008-2000

cvelist1 prion1 nvd1