Lucene search

K
cve[email protected]CVE-2008-2001
HistoryApr 28, 2008 - 8:05 p.m.

CVE-2008-2001

2008-04-2820:05:00
CWE-119
web.nvd.nist.gov
33
cve-2008-2001
apple safari
denial of service
application crash
security vulnerability

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

6.3

Confidence

Low

EPSS

0.177

Percentile

96.2%

Apple Safari 3.1.1 allows remote attackers to cause a denial of service (application crash) via a file:///%E2 link that triggers an out-of-bounds access, possibly due to a NULL pointer dereference.

Affected configurations

NVD
Node
applesafariMatch3.1.1
VendorProductVersionCPE
applesafari3.1.1cpe:/a:apple:safari:3.1.1:::

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

6.3

Confidence

Low

EPSS

0.177

Percentile

96.2%