Vulnerabilities > CVE-2007-0644 - Products Format String vulnerability in Apple Safari 2.0.4419.3
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
COMPLETE Summary
Format string vulnerability in Apple Safari 2.0.4 (419.3) allows remote user-assisted attackers to cause a denial of service (crash) via format string specifiers in filenames that are not properly handled when calling the (1) NSLog and (2) NSBeginAlertSheet Apple AppKit functions.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Apple Mac OS X 10.4.x Safari window.console.log Format String. CVE-2007-0644. Dos exploit for osx platform |
| id | EDB-ID:29555 |
| last seen | 2016-02-03 |
| modified | 2007-01-30 |
| published | 2007-01-30 |
| reporter | LMH |
| source | https://www.exploit-db.com/download/29555/ |
| title | Apple Mac OS X 10.4.x Safari window.console.log Format String |