CVE-2009-3272
Apple Safari - Resource Management Error
Title source: ruleDescription
Stack consumption vulnerability in WebKit.dll in WebKit in Apple Safari 3.2.3, and possibly other versions before 4.1.2, allows remote attackers to cause a denial of service (application crash) via JavaScript code that calls eval on a long string composed of A/ sequences.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Jeremy Brown · perldoswindows_x86
https://www.exploit-db.com/exploits/9606
References (4)
Scores
EPSS
0.0332
EPSS Percentile
87.3%
Details
CWE
CWE-399
Status
published
Products (5)
apple/safari
3.2.3
apple/safari
4.0 (2 CPE variants)
apple/safari
4.0.0b
apple/safari
4.0.2
apple/safari
4.0.3
Published
Sep 21, 2009
Tracked Since
Feb 18, 2026