Vulnerabilities > CVE-2010-1131 - Remote Denial Of Service vulnerability in Apple Safari 4.0.5

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

apple

microsoft

exploit available

NVD

Published: 2010-03-27

Updated: 2010-06-08

Summary

JavaScriptCore.dll, as used in Apple Safari 4.0.5 on Windows XP SP3, allows remote attackers to cause a denial of service (application crash) via an HTML document composed of many successive occurrences of the <object> substring.

Vulnerable Configurations

Part	Description	Count
Application	Apple Apple Safari 4.0.5	1
OS	Microsoft Microsoft Windows XP *	1

Exploit-Db

description	SAFARI APPLE 4.0.5 (object tag) (JavaScriptCore.dll) DoS (Crash). CVE-2010-1131. Dos exploit for windows platform
id	EDB-ID:11838
last seen	2016-02-01
modified	2010-03-22
published	2010-03-22
reporter	3lkt3F0k4
source	https://www.exploit-db.com/download/11838/
title	SAFARI APPLE 4.0.5 object tag JavaScriptCore.dll DoS Crash

description	JavaScriptCore.dll Stack Exhaustion. CVE-2010-1131. Dos exploit for windows platform
id	EDB-ID:12487
last seen	2016-02-01
modified	2010-05-03
published	2010-05-03
reporter	Mathias Karlsson
source	https://www.exploit-db.com/download/12487/
title	JavaScriptCore.dll Stack Exhaustion

Summary

Vulnerable Configurations

Exploit-Db

References