Description
Safari on Apple iPhone OS 3.1.3 for iPod touch allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via vectors related to an array of long strings, an array of IMG elements with crafted strings in their SRC attributes, a TBODY element with no associated TABLE element, and certain calls to the delete operator and the cloneNode, clearAttributes, and CollectGarbage methods, possibly a related issue to CVE-2009-0075.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Nishant Das Patnaik · textdosios
https://www.exploit-db.com/exploits/11891
References (3)
Core 3
Core References
Exploit exploit
x_refsource_exploit-db
http://www.exploit-db.com/exploits/11891
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/38989
Exploit x_refsource_misc
http://nishantdaspatnaik.yolasite.com/ipodpoc1.php
Scores
EPSS
0.1173
EPSS Percentile
93.7%
Details
CWE
CWE-94
Status
published
Products (1)
apple/safari
Published
Mar 29, 2010
Tracked Since
Feb 18, 2026