CVE-2007-4812

Safari < 3.0.4 - Buffer Overflow via document.location.hash

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-4812. PoCs published by Azizov E.

AI-analyzed exploit summary This exploit triggers a buffer overflow in Safari for Windows by crafting a maliciously long URL hash. The PoC uses JavaScript to generate an excessively long string and sets it as the document.location.hash, potentially leading to arbitrary code execution or denial-of-service.

Description

Buffer overflow in Apple Safari 3.0.3 522.15.5, and other versions before Beta Update 3.0.4, allows remote attackers to cause a denial of service (crash) and possibly have other unspecified impact by setting document.location.hash to a long string. NOTE: the crash might actually occur in the alert method.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Azizov E · htmldoswindows

https://www.exploit-db.com/exploits/30767

View Code ZIP pw:eip

This exploit triggers a buffer overflow in Safari for Windows by crafting a maliciously long URL hash. The PoC uses JavaScript to generate an excessively long string and sets it as the document.location.hash, potentially leading to arbitrary code execution or denial-of-service.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Theoretical

Target: Safari for Windows (versions affected by CVE-2007-4812)

No auth needed

Prerequisites: Victim must visit a maliciously crafted webpage

MITRE ATT&CK