Search for vulnerabilities
Vulnerability details: VCID-mchf-ps4h-aaaf
Vulnerability ID VCID-mchf-ps4h-aaaf
Aliases CVE-2008-2307
Summary Unspecified vulnerability in WebKit in Apple Safari before 3.1.2, as distributed in Mac OS X before 10.5.4, and standalone for Windows and Mac OS X 10.4, allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via vectors involving JavaScript arrays that trigger memory corruption.
Status Published
Exploitability 0.5
Weighted Severity 9.0
Risk 4.5
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-399 Resource Management Errors
System Score Found at
epss 0.09432 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09432 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09432 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09432 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09432 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.09793 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.15706 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.18213 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.18213 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.18213 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.18213 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.18213 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.18213 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.31378 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.31378 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
epss 0.31378 https://api.first.org/data/v1/epss?cve=CVE-2008-2307
rhbs urgent https://bugzilla.redhat.com/show_bug.cgi?id=454092
cvssv2 9.3 https://nvd.nist.gov/vuln/detail/CVE-2008-2307
generic_textual MODERATE http://support.apple.com/kb/HT2163
generic_textual MODERATE http://www.vupen.com/english/advisories/2008/1981/references
Reference id Reference type URL
http://lists.apple.com/archives/security-announce/2008//Jul/msg00001.html
http://lists.apple.com/archives/security-announce/2008//Jun/msg00001.html
http://lists.apple.com/archives/security-announce/2008//Jun/msg00003.html
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2307.json
https://api.first.org/data/v1/epss?cve=CVE-2008-2307
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2307
http://secunia.com/advisories/30775
http://secunia.com/advisories/30801
http://secunia.com/advisories/30992
http://secunia.com/advisories/31074
http://support.apple.com/kb/HT2092
http://support.apple.com/kb/HT2163
http://support.apple.com/kb/HT2165
https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00279.html
https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00319.html
http://www.kb.cert.org/vuls/id/361043
http://www.securityfocus.com/bid/29836
http://www.securitytracker.com/id?1020330
http://www.vupen.com/english/advisories/2008/1882/references
http://www.vupen.com/english/advisories/2008/1980
http://www.vupen.com/english/advisories/2008/1981/references
http://www.vupen.com/english/advisories/2008/2094/references
454092 https://bugzilla.redhat.com/show_bug.cgi?id=454092
CVE-2008-2307 https://nvd.nist.gov/vuln/detail/CVE-2008-2307
No exploits are available.
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C Found at https://nvd.nist.gov/vuln/detail/CVE-2008-2307
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Exploit Prediction Scoring System (EPSS)
Percentile 0.94913
EPSS Score 0.09432
Published At Nov. 1, 2024, midnight
Date Actor Action Source VulnerableCode Version
There are no relevant records.