← back
CVE-2007-0644

CVE-2007-0644

EPSS 2.4%
Format string vulnerability in Apple Safari 2.0.4 (419.3) allows remote user-assisted attackers to cause a denial of service (crash) via format string specifiers in filenames that are not properly handled when calling the (1) NSLog and (2) NSBeginAlertSheet Apple AppKit functions.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/29555unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://www.digitalmunition.com/MOAB-30-01-2007.htmlhttp://www.osvdb.org/32710http://www.securityfocus.com/bid/22326