Integer signedness error in Safari on Apple iPhone before 2.0 and iPod touch before 2.0 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors involving JavaScript array indices that trigger an out-of-bounds access, a different vulnerability than CVE-2008-2307.
Vector
NETWORK
Complexity
LOW
Authentication
NONE
Confidentiality
COMPLETE
Integrity
COMPLETE
Availability
COMPLETE
| Advisory | Patch | Confirmed | Link |
|---|---|---|---|
| ipod-iphone-javascript-code-execution(43736) | |||
| ADV-2008-2094 | |||
| 30186 | |||
| http://support.apple.com/kb/HT3298 | |||
| APPLE-SA-2008-07-11 | |||
| APPLE-SA-2008-11-13 |