CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2007-0644

Format string vulnerability in Apple Safari 2.0.4 (419.3) allows remote user-assisted attackers to cause a denial of service (crash) via format string specifiers in filenames that are not properly handled when calling the (1) NSLog and (2) NSBeginAlertSheet Apple AppKit functions.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.043

EPSS Ranking 88.5%

CVSS Severity

CVSS v2 Score 7.1

References

http://www.digitalmunition.com/MOAB-30-01-2007.html
http://www.osvdb.org/32710
http://www.securityfocus.com/bid/22326
http://www.digitalmunition.com/MOAB-30-01-2007.html
http://www.osvdb.org/32710
http://www.securityfocus.com/bid/22326

Products affected by CVE-2007-0644

Apple » Safari » Version: 2.0.4_419.3

cpe:2.3:a:apple:safari:2.0.4_419.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-0644

Products

Pricing

Contact Us