CVE Vulnerability

CVE-2008-4231

Safari in Apple iPhone OS 1.0 through 2.1 and iPhone OS for iPod touch 1.1 through 2.1 does not properly handle HTML TABLE elements, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document.

9.3 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 8.6 / Impact : 10

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

Scope

References
Link Resource
http://lists.apple.com/archives/security-announce/2008/Nov/msg00002.html Vendor Advisory
http://www.securityfocus.com/bid/32394
http://support.apple.com/kb/HT3318 Vendor Advisory
http://www.securitytracker.com/id?1021272
http://osvdb.org/50028
http://secunia.com/advisories/32756
http://support.apple.com/kb/HT3613
http://lists.apple.com/archives/security-announce/2009/jun/msg00002.html
http://www.vupen.com/english/advisories/2009/1522
http://secunia.com/advisories/35379
http://www.fortiguardcenter.com/advisory/FGA-2009-23.html
http://www.vupen.com/english/advisories/2008/3232
http://www.securityfocus.com/archive/1/504211/100/0/threaded
Configurations

Configuration 1
Information

Published : 2008-11-25 11:30

Updated : 2022-08-09 01:48

NVD link : CVE-2008-4231

Mitre link : CVE-2008-4231

Products Affected
No products.
CWE
CWE-399