CVE-2010-1179

Name of the Vulnerable Software and Affected Versions Safari on Apple iPhone OS version 3.1.3 for iPod touch

Description The issue allows remote attackers to cause a denial of service, potentially leading to an application crash, or possibly execute arbitrary code. This is achieved by including a large integer in the numcolors attribute of a recolorinfo element in a VML file.

Recommendations For Safari on Apple iPhone OS version 3.1.3 for iPod touch, consider avoiding the use of VML files with large integers in the numcolors attribute of a recolorinfo element until a fix is available. As a temporary workaround, restrict access to potentially malicious VML files to minimize the risk of exploitation.