CVE-2008-1010

Buffer overflow in WebKit, as used in Apple Safari before 3.1, allows remote attackers to execute arbitrary code via crafted regular expressions in JavaScript.

Published: Mar 19, 2008
Updated: Apr 13, 2023
CVE: CVE-2008-1010
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
apple / safari	1.3.2	1.3.2.x
apple / safari	3.0.4	3.0.4.x
apple / safari	2.0.2	2.0.2.x
apple / safari	3.0.1	3.0.1.x
apple / safari	3.0.2	3.0.2.x
apple / safari	1.0	1.0.x
apple / safari	1.3	1.3.x
apple / safari	3.0.3	3.0.3.x
apple / safari	2.0	2.0.x
apple / safari	0.8	0.8.x
apple / safari	2.0.4	2.0.4.x
apple / safari	1.1	1.1.x
apple / safari	1.3.1	1.3.1.x
apple / safari	1.2	1.2.x
apple / safari	3.0	3.0.x
apple / safari	0.9	0.9.x

http://docs.info.apple.com/article.html?artnum=307563
http://lists.apple.com/archives/security-announce/2008/Mar/msg00000.html
http://secunia.com/advisories/29393
http://secunia.com/advisories/29924
http://www.securityfocus.com/bid/28290
http://www.securityfocus.com/bid/28338
http://www.securitytracker.com/id?1019654
http://www.us-cert.gov/cas/techalerts/TA08-079A.html
http://www.vupen.com/english/advisories/2008/0920/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/41321
https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00402.html

Vulnerability Database

CVE-2008-1010