43980 : Apple Safari WebKit (JavaScriptCore/pcre/pcre_compile.cpp) PCRE Nested Repetition Count Overflow
Printer | http://osvdb.org/43980 | Email This | Edit Vulnerability

Views This Week
2

Views All Time
433

Info

Last Modified
2 months ago

Percent Complete
100%

Disclosure
Apr 16, 2008

Discovery
Unknown

Dates

Exploit
Unknown

Solution
Apr 16, 2008

Description

 A buffer overflow exists in Safari. The WebKit component fails to validate JavaScript regular expressions resulting in a heap overflow. With a specially crafted web page, a context-dependent attacker can cause arbitrary code execution resulting in a loss of integrity.

Classification

 Location: Local Access Required, Remote/Network Access Required
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Upgrade
Exploit: Exploit Rumored / Private
Disclosure: Vendor Verified
OSVDB: Context Dependent, Web Related

Solution

 Upgrade to version 3.1.1 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products
Apple Computer, Inc.
Watch-list
Safari
Watch-list
 3
3.1

References

Tools & Filters

Nessus

 31992

Credit
  • Charlie Miller -
  • Jack Honoroff -
  • Mark Daniel -

Blogs

Provided by Technorati

2008/04/16 22:14:31 | Apple plugs Pwn2Own winning vulnerability

from: New Digital Computer —

Apple plugs Pwn2Own winning vulnerability in: Uncategorized Apple plugged the winning vulnerability in the Pwn2own contest on Wednesday in a Safari update. In an update for Safari (3.1.1), Apple fixed the following vulnerabilities: CVE-2008-1026, also known as the flaw that won hacker Charlie Miller $10,000.in the Pwn2Own contest at CanSecWest

2008/04/18 09:57:59 | Safari 3.1.1 Update Fixes Security Flaws

from: Securethoughts - Mac OS X and Network Security News, Articles and Forums

On Wednesday, Apple released an update for the Safari web browser for Mac OS X and Windows. The Safari 3.1.1 update fixes four security issues, two in Safari itself and two in the WebKit browser engine. The update includes a fix to the flaw used by researcher Charlie Miller to hack a MacBook Air in the overly-publicised Pwn2Own contest at

2008/04/17 21:38:16 | Apple Patches Safari Vulnerabilities

from: Smartphone and Gadget News by ElectroGeek

The fixes include patching a zero-day vulnerability in Apple’s Web browser that allowed researchers to compromise a MacBook Air ... patch is CVE-2008-1026, which Apple thanks Charlie Miller for reporting. Apple describes the flaw thus

2008/04/17 02:46:11 | Apple Posts Safari 3.1.1 Update & EFI Firmware Update 1.5 for MacBook Pros

from: The Apple Blog

Apple posted an update to Safari that – amongst other fixes – patches 4 vulnerabilities in the Windows version and 2 in the OS X version of their ... practices. The truly nasty bug is CVE-2008-1026 which can allow remote code execution due

Comments

Add Comment

No Comments.

DONATE NOW!

User Status

Quick Searches

Advertisements

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

© Copyright 2008 Open Source Vulnerability Database (OSVDB), All Rights Reserved.
Privacy Statement - Terms of Use