CVE-2008-5821

Apple Safari 3.2 - Denial of Service via Long ALINK Attribute

Title source: llm

Exploitation Summary

EIP tracks 3 public exploits for CVE-2008-5821. PoCs published by Xss mAn, Pr0T3cT10n, Jeremy Brown.

AI-analyzed exploit summary This Perl script generates an HTML file with a malformed CSS style attribute that triggers a Denial of Service (DoS) in Safari 4.0.5 (531.22.7) when opened. The exploit leverages an excessively long 'alink' value to crash the browser.

Description

Memory leak in WebKit.dll in WebKit, as used by Apple Safari 3.2 on Windows Vista SP1, allows remote attackers to cause a denial of service (memory consumption and browser crash) via a long ALINK attribute in a BODY element in an HTML document.

Exploits (3)

exploitdb WORKING POC VERIFIED

by Xss mAn · perldoswindows

https://www.exploit-db.com/exploits/12408

View Code ZIP pw:eip

This Perl script generates an HTML file with a malformed CSS style attribute that triggers a Denial of Service (DoS) in Safari 4.0.5 (531.22.7) when opened. The exploit leverages an excessively long 'alink' value to crash the browser.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Safari 4.0.5 (531.22.7)

No auth needed

Prerequisites: Perl interpreter · Ability to deliver the HTML file to the target

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WORKING POC VERIFIED

by Pr0T3cT10n · phpdososx

https://www.exploit-db.com/exploits/32695

View Code ZIP pw:eip

This exploit generates an HTML file with an excessively long 'alink' attribute in the body tag, triggering a denial-of-service (DoS) condition in Apple Safari on iOS 4.0.1. The vulnerability resides in the WebKit library, causing the browser to crash when the file is loaded.

Classification

Working Poc 100%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Apple Safari on iOS 4.0.1

No auth needed

Prerequisites: Ability to host or deliver the malicious HTML file to the target

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WORKING POC VERIFIED

by Jeremy Brown · perldososx

https://www.exploit-db.com/exploits/32694

View Code ZIP pw:eip

This Perl script generates an HTML file that triggers a memory leak in Safari's WebKit library by creating an excessively long 'alink' attribute, leading to a denial-of-service condition.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Apple Safari 3.2 (WebKit) on Windows Vista, iOS 4.0.1

No auth needed

Prerequisites: None

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/47724

Exploit vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/33080

Exploit x_refsource_misc

http://packetstormsecurity.org/0812-exploits/safari_webkit_ml.txt

Various Sources x_refsource_misc

http://jbrownsec.blogspot.com/2008/12/new-year-research-are-upon-us.html

Scores

EPSS 0.0392

EPSS Percentile 88.9%

Details

CWE

CWE-399

Status published

Products (1)

apple/safari 3.2

Published Jan 02, 2009

Tracked Since Feb 18, 2026