Vulnerability Database

290,301

Total vulnerabilities in the database

CVE-2009-3272

Stack consumption vulnerability in WebKit.dll in WebKit in Apple Safari 3.2.3, and possibly other versions before 4.1.2, allows remote attackers to cause a denial of service (application crash) via JavaScript code that calls eval on a long string composed of A/ sequences.

  • Published: Sep 21, 2009
  • Updated: Apr 13, 2023
  • CVE: CVE-2009-3272
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 5
  • AV:N/AC:L/Au:N/C:N/I:N/A:P

CWEs:

Software From Fixed in
apple / safari 4.0.2 4.0.2.x
apple / safari 4.0-beta 4.0-beta.x
apple / safari 4.0.3 4.0.3.x
apple / safari 4.0 4.0.x
apple / safari 4.0.0b 4.0.0b.x
apple / safari 3.2.3 3.2.3.x