CVE-2010-1177

Safari <3.1.3 - DoS/Code Injection

Title source: llm

Description

Safari on Apple iPhone OS 3.1.3 for iPod touch allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via vectors involving document.write calls with long crafted strings.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Nishant Das Patnaik · htmlremoteosx

https://www.exploit-db.com/exploits/33811

View Code ZIP pw:eip

References (2)

[Exploit] http://nishantdaspatnaik.yolasite.com/ipodpoc2.php

[Exploit] http://www.securityfocus.com/bid/38994

Scores

EPSS 0.0870

EPSS Percentile 92.5%

Details

CWE

CWE-94

Status published

Products (1)

apple/safari

Published Mar 29, 2010

Tracked Since Feb 18, 2026