CVE-2008-2317

EPSS 14.24%
Published 14.07.2008 18:41:00
Last modified 09.04.2025 00:30:58
Source cve@mitre.org
Teams watchlist Login
Open Login

WebCore in Apple Safari does not properly perform garbage collection of JavaScript document elements, which allows remote attackers to execute arbitrary code or cause a denial of service (heap corruption and application crash) via a reference to the ownerNode property of a copied CSSStyleSheet object of a STYLE element, as originally demonstrated on Apple iPhone before 2.0 and iPod touch before 2.0, a different vulnerability than CVE-2008-1590.

Affected products Warnungen 0 Metrics 2 CWE 0 References 13

Data is provided by the National Vulnerability Database (NVD)

Apple ≫ Safari

   Apple ≫ Iphone Version1.0
   Apple ≫ Iphone Version1.1
   Apple ≫ Iphone Version1.1.3
   Apple ≫ Ipod Touch Version <= 1.1.4
   Apple ≫ Ipod Touch Version1.1
   Apple ≫ Ipod Touch Version1.1.1
   Apple ≫ Ipod Touch Version1.1.2
   Apple ≫ Ipod Touch Version1.1.3
   Apple ≫ iPhone OS Version <= 1.1.4
   Apple ≫ iPhone OS Version1.0.1
   Apple ≫ iPhone OS Version1.0.2
   Apple ≫ iPhone OS Version1.1.1
   Apple ≫ iPhone OS Version1.1.2

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.