CVE-2008-3632

Use-after-free vulnerability in WebKit in Apple iPod touch 1.1 through 2.0.2, and iPhone 1.0 through 2.0.2, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a web page with crafted Cascading Style Sheets (CSS) import statements.
Configurations

Configuration 1 (hide)

OR cpe:2.3:h:apple:iphone:1.1:*:*:*:*:*:*:*
cpe:2.3:h:apple:iphone:1.1.3:*:*:*:*:*:*:*
cpe:2.3:h:apple:iphone:1.1.4:*:*:*:*:*:*:*
cpe:2.3:h:apple:iphone:2.0:*:*:*:*:*:*:*
cpe:2.3:h:apple:iphone:2.0.1:*:*:*:*:*:*:*
cpe:2.3:h:apple:iphone:2.0.2:*:*:*:*:*:*:*
cpe:2.3:h:apple:ipod_touch:1.1:*:*:*:*:*:*:*
cpe:2.3:h:apple:ipod_touch:1.1.1:*:*:*:*:*:*:*
cpe:2.3:h:apple:ipod_touch:1.1.2:*:*:*:*:*:*:*
cpe:2.3:h:apple:ipod_touch:1.1.3:*:*:*:*:*:*:*
cpe:2.3:h:apple:ipod_touch:1.1.4:*:*:*:*:*:*:*
cpe:2.3:h:apple:ipod_touch:2.0:*:*:*:*:*:*:*
cpe:2.3:h:apple:ipod_touch:2.0.1:*:*:*:*:*:*:*
cpe:2.3:h:apple:ipod_touch:2.0.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.1.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.1.2:*:*:*:*:*:*:*

History

No history.

Information

Published : 2008-09-11 01:13

Updated : 2024-02-28 11:21


NVD link : CVE-2008-3632

Mitre link : CVE-2008-3632

CVE.ORG link : CVE-2008-3632


JSON object : View

Products Affected

apple

  • iphone_os
  • ipod_touch
  • iphone
CWE
CWE-399

Resource Management Errors