Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-2307

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2008-2307
Last Modified 15 Mar 2011 12:00:00
Published 23 Jun 2008 04:41:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-2307

Summary

Unspecified vulnerability in WebKit in Apple Safari before 3.1.2, as distributed in Mac OS X before 10.5.4, and standalone for Windows and Mac OS X 10.4, allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via vectors involving JavaScript arrays that trigger memory corruption.

Vulnerable Systems

Application

  • Apple Safari 3.0

  • Apple Safari 3.0.1

  • Apple Safari 3.0.2

  • Apple Safari 3.0.3

  • Apple Safari 3.0.4

  • Apple Safari 3.1

  • Apple Safari 3.1.1


References

CERT-VN - VU#361043

BID - 29836

APPLE - APPLE-SA-2008-06-19

FEDORA - FEDORA-2008-6220

FEDORA - FEDORA-2008-6186

VUPEN - ADV-2008-2094

VUPEN - ADV-2008-1981

VUPEN - ADV-2008-1980

VUPEN - ADV-2008-1882

SECTRACK - 1020330

CONFIRM - http://support.apple.com/kb/HT2165

CONFIRM - http://support.apple.com/kb/HT2163

CONFIRM - http://support.apple.com/kb/HT2092

SECUNIA - 31074

SECUNIA - 30992

SECUNIA - 30801

SECUNIA - 30775

APPLE - APPLE-SA-2008-06-30

APPLE - APPLE-SA-2008-07-11

Related Patches

Apple 2008-06-30 Mac OS X Server 10.5.4 Combo Update

Apple 2008-06-30 Mac OS X 10.5.4 Update

Apple 2008-06-30 Mac OS X Server 10.5.4 Update

Apple 2008-06-30 Mac OS X 10.5.4 Combo Update


Last Updated: 27 May 2016 10:47:48