Safari in Apple iPhone OS 1.0 through 2.1 and iPhone OS for iPod touch 1.1 through 2.1 does not properly handle HTML TABLE elements, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document.
References
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 00:51
Type | Values Removed | Values Added |
---|---|---|
References | () http://lists.apple.com/archives/security-announce/2008/Nov/msg00002.html - Vendor Advisory | |
References | () http://lists.apple.com/archives/security-announce/2009/jun/msg00002.html - | |
References | () http://osvdb.org/50028 - | |
References | () http://secunia.com/advisories/32756 - | |
References | () http://secunia.com/advisories/35379 - | |
References | () http://support.apple.com/kb/HT3318 - Vendor Advisory | |
References | () http://support.apple.com/kb/HT3613 - | |
References | () http://www.fortiguardcenter.com/advisory/FGA-2009-23.html - | |
References | () http://www.securityfocus.com/archive/1/504211/100/0/threaded - | |
References | () http://www.securityfocus.com/bid/32394 - | |
References | () http://www.securitytracker.com/id?1021272 - | |
References | () http://www.vupen.com/english/advisories/2008/3232 - | |
References | () http://www.vupen.com/english/advisories/2009/1522 - |
Information
Published : 2008-11-25 23:30
Updated : 2024-11-21 00:51
NVD link : CVE-2008-4231
Mitre link : CVE-2008-4231
CVE.ORG link : CVE-2008-4231
JSON object : View
Products Affected
apple
- iphone_os
- safari
- ipod_touch
CWE
CWE-399
Resource Management Errors