Vulnerability Description
Integer signedness error in Apple Safari allows remote attackers to read the contents of arbitrary memory locations, cause a denial of service (application crash), and probably have unspecified other impact via the array index of the arguments array in a JavaScript function, possibly a related issue to CVE-2008-2307.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | Safari | All versions |
Related Weaknesses (CWE)
References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/48214
- https://www.exploit-db.com/exploits/7673
- https://exchange.xforce.ibmcloud.com/vulnerabilities/48214
- https://www.exploit-db.com/exploits/7673
FAQ
What is CVE-2009-0070?
CVE-2009-0070 is a vulnerability with a CVSS score of 9.3 (HIGH). Integer signedness error in Apple Safari allows remote attackers to read the contents of arbitrary memory locations, cause a denial of service (application crash), and probably have unspecified other ...
How severe is CVE-2009-0070?
CVE-2009-0070 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2009-0070?
Check the references section above for vendor advisories and patch information. Affected products include: Apple Safari.