CVE-2008-3950

CVE Database · CVE-2008-3950

CVE-2008-3950

· N/AModified

CVSS v3.1

N/A

EPSS

7.08%

Published

Sep 16, 2008

Modified

Apr 22, 2026

Public PoC / Exploit (2)

All weaponized →

Exploit-DBApple iOS 1.1.4/2.0 / iPod 1.1.4/2.0 touch Safari WebKit - 'alert()' Remote Denial of Service TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Off-by-one error in the _web_drawInRect:withFont:ellipsis:alignment:measureOnly function in WebKit in Safari in Apple iPhone 1.1.4 and 2.0 and iPod touch 1.1.4 and 2.0 allows remote attackers to cause a denial of service (browser crash) via a JavaScript alert call with an argument that lacks breakable characters and has a length that is a multiple of the memory page size, leading to an out-of-bounds read.

Weaknesses (CWE)

CWE-189

Affected Products (5)

apple · iphonevulnerable

apple · ipod_touchvulnerable

apple · safarivulnerable

References (8)

http://securityreason.com/securityalert/4264

http://www.coresecurity.com/content/iphone-safari-javascript-alert-denial-of-service

Patch

http://www.securityfocus.com/archive/1/496321/100/0/threaded

http://www.securityfocus.com/bid/31061