CVE-2006-6015
published 2006-11-21CVE-2006-6015: Buffer overflow in the JavaScript implementation in Safari on Apple Mac OS X 10.4 allows remote attackers to cause a denial of service (application crash) via…
PriorityP420medium5CVSS 2.0
AVNACLAuNCNINAP
EXPLOIT
EPSS
3.69%
88.3th percentile
Buffer overflow in the JavaScript implementation in Safari on Apple Mac OS X 10.4 allows remote attackers to cause a denial of service (application crash) via a long argument to the exec method of a regular expression.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | mac_os_x | — | — |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
vendor_redhat5.0MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
Apple Mac OS X 10.4 memory corruption (EDB-29007 / BID-21053)
vuldb·2026-04-28·CVSS 5.0
CVE-2006-6015 [MEDIUM] Apple Mac OS X 10.4 memory corruption (EDB-29007 / BID-21053)
A vulnerability was found in Apple Mac OS X 10.4. It has been classified as critical. Affected by this issue is some unknown functionality. The manipulation leads to memory corruption.
This vulnerability is listed as CVE-2006-6015. The attack may be initiated remotely. In addition, an exploit is available.
GHSA
GHSA-9fmg-j3wr-fm3f: Buffer overflow in the JavaScript implementation in Safari on Apple Mac OS X 10
ghsa_unreviewed·2022-05-01
CVE-2006-6015 [MEDIUM] GHSA-9fmg-j3wr-fm3f: Buffer overflow in the JavaScript implementation in Safari on Apple Mac OS X 10
Buffer overflow in the JavaScript implementation in Safari on Apple Mac OS X 10.4 allows remote attackers to cause a denial of service (application crash) via a long argument to the exec method of a regular expression.
Red Hat
CVE-2006-6015: Buffer overflow in the JavaScript implementation in Safari on Apple Mac OS X 10
vendor_redhat·CVSS 5.0
CVE-2006-6015 [MEDIUM] CVE-2006-6015: Buffer overflow in the JavaScript implementation in Safari on Apple Mac OS X 10
Buffer overflow in the JavaScript implementation in Safari on Apple Mac OS X 10.4 allows remote attackers to cause a denial of service (application crash) via a long argument to the exec method of a regular expression.
Statement: Red Hat does not consider unexploitable client application crashes to be security flaws. This bug causes a stack recursion crash which is not exploitable.
No detection rules found.
No writeups or analysis indexed.
http://www.securityfocus.com/archive/1/451542/100/0/threadedhttp://www.securityfocus.com/archive/1/451823/100/0/threadedhttp://www.securityfocus.com/bid/21053http://www.securityfocus.com/archive/1/451542/100/0/threadedhttp://www.securityfocus.com/archive/1/451823/100/0/threadedhttp://www.securityfocus.com/bid/21053
2006-11-21
Published