cbcvebase.
CVE-2007-0644
published 2007-02-01

CVE-2007-0644: Format string vulnerability in Apple Safari 2.0.4 (419.3) allows remote user-assisted attackers to cause a denial of service (crash) via format string…

PriorityP421high7.1CVSS 2.0
AVNACMAuNCNINAC
EXPLOIT
EPSS
2.43%
82.2th percentile
Format string vulnerability in Apple Safari 2.0.4 (419.3) allows remote user-assisted attackers to cause a denial of service (crash) via format string specifiers in filenames that are not properly handled when calling the (1) NSLog and (2) NSBeginAlertSheet Apple AppKit functions.

Affected

1 ranges
VendorProductVersion rangeFixed in
applesafari
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.