PT-2010-2887 · Apple · Ios+1
Publicado
2010-03-29
·
Atualizado
2010-03-30
·
CVE-2010-1177
CVSS v2.0
9.3
Alta
| Vetor | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Safari on Apple iPhone OS version 3.1.3 for iPod touch
Description
The issue allows remote attackers to cause a denial of service, potentially leading to an application crash, or possibly execute arbitrary code. This is achieved through vectors involving
document.write calls with long crafted strings.Recommendations
For Safari on Apple iPhone OS version 3.1.3 for iPod touch, consider restricting the use of
document.write calls with long strings until a patch is available.Exploit
Correção
Code Injection
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Safari
Ios