CVE-2009-1687Integer Overflow or Wraparound in Apple Safari

CWE-399CWE-190Integer Overflow or Wraparound8 documents6 sources
Severity
9.3CRITICALNVD
EPSS
7.8%
top 8.03%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Apple Safari
Timeline
PublishedJun 10
Latest updateMay 2

Description

The JavaScript garbage collector in WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not properly handle allocation failures, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document that triggers write access to an "offset of a NULL pointer."

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages1 packages

NVDapple/safari4.0_beta+25

Patches

Patch: securitytracker.comPatch: www.vupen.comPatch: securitytracker.com

🔴Vulnerability Details

2
GHSA
GHSA-ph64-wm3p-cq9q: The JavaScript garbage collector in WebKit in Apple Safari before 42022-05-02
OSV
CVE-2009-1687: The JavaScript garbage collector in WebKit in Apple Safari before 42009-06-10

📋Vendor Advisories

4
Ubuntu
Qt vulnerabilities2009-11-10
Ubuntu
WebKit vulnerabilities2009-09-23
Ubuntu
KDE-Libs vulnerabilities2009-08-24
Red Hat
kdelibs: Integer overflow in KJS JavaScript garbage collector2009-06-25

💬Community

1
Bugzilla
CVE-2009-1687 kdelibs: Integer overflow in KJS JavaScript garbage collector2009-06-17