Security Advisory

CVE-2008-1026

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2008-04-17 17:00:00

Last updated 2024-08-07 08:08:57

Assigner mitre

State PUBLISHED

Description

Integer overflow in the PCRE regular expression compiler (JavaScriptCore/pcre/pcre_compile.cpp) in Apple WebKit, as used in Safari before 3.1.1, allows remote attackers to execute arbitrary code via a regular expression with large, nested repetition counts, which triggers a heap-based buffer overflow.

← Browse all CVEs View on cve.org ↗