Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2005-3018Apple Safari vulnerability

3 documents3 sources
Severity
5.0MEDIUMNVD
EPSS
5.0%
top 10.26%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Apple Safari
Timeline
PublishedSep 21
Latest updateMay 1

Description

Apple Safari allows remote attackers to cause a denial of service (application crash) via a crafted data:// URL.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDapple/safari9 versions+8

🔴Vulnerability Details

1
GHSA
GHSA-8xvc-7hjc-8cjx: Apple Safari allows remote attackers to cause a denial of service (application crash) via a crafted data:// URL2022-05-01

💥Exploits & PoCs

1
Exploit-DB
Apple Safari 1.x/2.0.1 - Data URI Memory Corruption2005-09-17