header-logo
Suggest Exploit
vendor:
Safari Web Browser
by:
SecurityFocus
7.5
CVSS
HIGH
Buffer Overflow
119
CWE
Product Name: Safari Web Browser
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2005

Apple Safari Web Browser Large JavaScript Array Handling Vulnerability

Apple Safari Web Browser is reported to be prone to a security vulnerability related to handling of large JavaScript arrays (with 99999999999999999999999 or 0x23000000 elements). By declaring such an array and then attempting to access it, it may be possible to cause a browser crash. This issue is likely due to memory corruption but it is not known if it could be further exploitable to execute arbitrary code.

Mitigation:

No known mitigation or remediation is available.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/9815/info

Apple Safari Web Browser is reported to be prone to a security vulnerability related to handling of large JavaScript arrays (with 99999999999999999999999 or 0x23000000 elements). By declaring such an array and then attempting to access it, it may be possible to cause a browser crash.

This issue is likely due to memory corruption but it is not known if it could be further exploitable to execute arbitrary code.

var a = new Array(99999999999999999999999);
a[0+5]="AAAAA";

and:
var bam = new Array(0x23000000);
bam.sort(new Function("return 1"));

Navigation

Suggest Exploit

Services By CQR