7.5

CVE-2006-3946

Exploit
WebCore in Apple Mac OS X 10.3.9 and 10.4 through 10.4.7 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted HTML that triggers a "memory management error" in WebKit, possibly due to a buffer overflow, as originally reported for the KHTMLParser::popOneBlock function in Apple Safari 2.0.4 using Javascript that changes document.body.innerHTML within a DIV tag.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
AppleSafari Version2.0.4
ApplemacOS X Version10.3.9
ApplemacOS X Version10.4
ApplemacOS X Version10.4.1
ApplemacOS X Version10.4.2
ApplemacOS X Version10.4.3
ApplemacOS X Version10.4.4
ApplemacOS X Version10.4.5
ApplemacOS X Version10.4.6
ApplemacOS X Version10.4.7
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 5.2% 0.914
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

http://lists.apple.com/archives/security-announce/2006/Sep/msg00002.html
http://secunia.com/advisories/22187
Vendor Advisory
http://www.vupen.com/english/advisories/2006/3852
Vendor Advisory
http://browserfun.blogspot.com/2006/07/mobb-31-safari-khtmlparserpoponeblock.html
Exploit
http://secunia.com/advisories/21271
Vendor Advisory
Exploit
http://securitytracker.com/id?1016957
http://www.osvdb.org/27534
http://www.securityfocus.com/bid/19250
Exploit
http://www.vupen.com/english/advisories/2006/3069
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/28081