CVE-2008-2317

by Fred · 14/07/2008

WebCore in Apple Safari does not properly perform garbage collection of JavaScript document elements, which allows remote attackers to execute arbitrary code or cause a denial of service (heap corruption and application crash) via a reference to the ownerNode property of a copied CSSStyleSheet object of a STYLE element, as originally demonstrated on Apple iPhone before 2.0 and iPod touch before 2.0, a different vulnerability than CVE-2008-1590.

Date published : 2008-07-14

http://lists.apple.com/archives/security-announce/2008//Jul/msg00001.html

http://lists.apple.com/archives/security-announce//2008/Nov/msg00001.html

CVE-2008-2317

Similar

Recent Posts

Categories

CVE-2008-2317

Share this:

Similar

Recent Posts

Categories

Tags