7.1
CVE-2007-0644
- EPSS 2.43%
- Veröffentlicht 01.02.2007 00:28:00
- Zuletzt bearbeitet 16.06.2026 22:35:59
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Format string vulnerability in Apple Safari 2.0.4 (419.3) allows remote user-assisted attackers to cause a denial of service (crash) via format string specifiers in filenames that are not properly handled when calling the (1) NSLog and (2) NSBeginAlertSheet Apple AppKit functions.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.43% | 0.821 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.1 | 8.6 | 6.9 |
AV:N/AC:M/Au:N/C:N/I:N/A:C
|
http://www.digitalmunition.com/MOAB-30-01-2007.html
http://www.osvdb.org/32710
http://www.securityfocus.com/bid/22326