Lucene search
Ubuntu.comUB:CVE-2008-3950HistorySep 16, 2008 - 12:00 a.m.
CVE-2008-3950
2008-09-1600:00:00
ubuntu.com
ubuntu.com
4
0.061 Low
EPSS
Percentile
93.5%
Off-by-one error in the
_web_drawInRect:withFont:ellipsis:alignment:measureOnly function in WebKit
in Safari in Apple iPhone 1.1.4 and 2.0 and iPod touch 1.1.4 and 2.0 allows
remote attackers to cause a denial of service (browser crash) via a
JavaScript alert call with an argument that lacks breakable characters and
has a length that is a multiple of the memory page size, leading to an
out-of-bounds read.
Notes
| Author | Note |
|---|---|
| mdeslaur | looks like a safari bug (code not present in webkit) |
Related
securityvulns
securityvulns
Apple iPhone Safari DoS
2008-09-14 00:00:00
CORE-2008-0126: iPhone Safari JavaScript alert Denial of Service
2008-09-14 00:00:00
cvelist
cvelist
CVE-2008-3950
2008-09-16 23:00:00
coresecurity
coresecurity
iPhone Safari JavaScript alert Denial of Service
2008-09-12 00:00:00
seebug
seebug
Apple iPhone Safari WebKit alert()函数远程拒绝服务漏洞
2008-09-17 00:00:00
prion
prion
Design/Logic Flaw
2008-09-16 23:00:00
cve
cve
CVE-2008-3950
2008-09-16 23:00:00