Description
Safari on Apple iPhone OS 3.1.3 for iPod touch allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a large integer in the numcolors attribute of a recolorinfo element in a VML file, possibly a related issue to CVE-2007-0024.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Nishant Das Patnaik · textdosios
https://www.exploit-db.com/exploits/11890
References (3)
Core 3
Core References
Exploit x_refsource_misc
http://nishantdaspatnaik.yolasite.com/ipodpoc4.php
Exploit exploit
x_refsource_exploit-db
http://www.exploit-db.com/exploits/11890
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/38990
Scores
EPSS
0.1031
EPSS Percentile
93.2%
Details
CWE
CWE-189
Status
published
Products (1)
apple/safari
Published
Mar 29, 2010
Tracked Since
Feb 18, 2026