9.3
CVSSv2

CVE-2008-2317

Published: 14/07/2008 Updated: 09/08/2022
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
VMScore: 828
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Vulnerability Summary

WebCore in Apple Safari does not properly perform garbage collection of JavaScript document elements, which allows remote malicious users to execute arbitrary code or cause a denial of service (heap corruption and application crash) via a reference to the ownerNode property of a copied CSSStyleSheet object of a STYLE element, as originally demonstrated on Apple iPhone prior to 2.0 and iPod touch prior to 2.0, a different vulnerability than CVE-2008-1590.

Vulnerable Product Search on Vulmon Subscribe to Product

apple safari