9.3

CVE-2008-3632

Use-after-free vulnerability in WebKit in Apple iPod touch 1.1 through 2.0.2, and iPhone 1.0 through 2.0.2, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a web page with crafted Cascading Style Sheets (CSS) import statements.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
AppleIphone Version1.1
AppleIphone Version1.1.3
AppleIphone Version1.1.4
AppleIphone Version2.0
AppleIphone Version2.0.1
AppleIphone Version2.0.2
AppleIpod Touch Version1.1
AppleIpod Touch Version1.1.1
AppleIpod Touch Version1.1.2
AppleIpod Touch Version1.1.3
AppleIpod Touch Version1.1.4
AppleIpod Touch Version2.0
AppleIpod Touch Version2.0.1
AppleIpod Touch Version2.0.2
AppleiPhone OS Version1.1.1
AppleiPhone OS Version1.1.2
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 5.95% 0.923
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 9.3 8.6 10
AV:N/AC:M/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://lists.apple.com/archives/security-announce/2009/jun/msg00002.html
Patch
Vendor Advisory
http://secunia.com/advisories/35379
Vendor Advisory
http://support.apple.com/kb/HT3613
Patch
Vendor Advisory
http://www.vupen.com/english/advisories/2009/1522
Patch
Vendor Advisory
http://lists.opensuse.org/opensuse-security-announce/2008-09/msg00005.html
http://secunia.com/advisories/32099
Vendor Advisory
http://lists.apple.com/archives/security-announce//2008/Sep/msg00003.html
Patch
Vendor Advisory
http://lists.apple.com/archives/security-announce//2008/Sep/msg00004.html
Patch
Vendor Advisory
http://secunia.com/advisories/31823
Vendor Advisory
http://secunia.com/advisories/31900
Vendor Advisory
http://support.apple.com/kb/HT3026
Patch
Vendor Advisory
http://support.apple.com/kb/HT3129
Patch
Vendor Advisory
http://www.vupen.com/english/advisories/2008/2525
Vendor Advisory
http://www.vupen.com/english/advisories/2008/2558
Vendor Advisory
http://www.securityfocus.com/bid/31092
Patch
http://secunia.com/advisories/32860
http://www.securitytracker.com/id?1020847
http://www.ubuntu.com/usn/USN-676-1