Lucene search
Ubuntu.comUB:CVE-2008-1026HistoryApr 17, 2008 - 12:00 a.m.
CVE-2008-1026
2008-04-1700:00:00
ubuntu.com
ubuntu.com
8
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
EPSS
0.099
Percentile
94.9%
Integer overflow in the PCRE regular expression compiler
(JavaScriptCore/pcre/pcre_compile.cpp) in Apple WebKit, as used in Safari
before 3.1.1, allows remote attackers to execute arbitrary code via a
regular expression with large, nested repetition counts, which triggers a
heap-based buffer overflow.
Notes
| Author | Note |
|---|---|
| mdeslaur | qt4-x11 is not affected as per debian |
Related
prion
prion
Integer overflow
2008-04-17 19:05:00
cvelist
cvelist
CVE-2008-1026
2008-04-17 17:00:00
securityvulns
securityvulns
ZDI-08-022: Apple Safari WebKit PCRE Handling Integer Overflow Vulnerability
2008-04-17 00:00:00
PCRE library buffer overflow
2008-04-17 00:00:00
zdi
zdi
Apple Safari WebKit PCRE Handling Integer Overflow Vulnerability
2008-04-16 00:00:00
cve
cve
CVE-2008-1026
2008-04-17 19:05:00
nvd
nvd
CVE-2008-1026
2008-04-17 19:05:00
debiancve
debiancve
CVE-2008-1026
2008-04-17 19:05:00
nessus
nessus
Mac OS X : Apple Safari < 3.1.1
2008-04-18 00:00:00
Safari < 3.1.1 Multiple Vulnerabilities
2008-04-18 00:00:00
seebug
seebug
Apple Safari 3.1.1版本修复多个安全漏洞
2008-04-18 00:00:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
EPSS
0.099
Percentile
94.9%
Related for UB:CVE-2008-1026