1. CVE-Search
  2. CVE-2008-1590
ID CVE-2008-1590
Summary JavaScriptCore in WebKit on Apple iPhone before 2.0 and iPod touch before 2.0 does not properly perform runtime garbage collection, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors that trigger memory corruption, a different vulnerability than CVE-2008-2317.
References
Vulnerable Configurations
  • cpe:2.3:o:apple:iphone_os:1.0.2:*:*:*:*:*:*:*
    cpe:2.3:o:apple:iphone_os:1.0.2:*:*:*:*:*:*:*
  • cpe:2.3:h:apple:iphone:1.0:*:*:*:*:*:*:*
    cpe:2.3:h:apple:iphone:1.0:*:*:*:*:*:*:*
  • cpe:2.3:h:apple:ipod_touch:1.1.2:*:*:*:*:*:*:*
    cpe:2.3:h:apple:ipod_touch:1.1.2:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:iphone_os:1.1.1:*:*:*:*:*:*:*
    cpe:2.3:o:apple:iphone_os:1.1.1:*:*:*:*:*:*:*
  • cpe:2.3:h:apple:iphone:1.1.4:*:*:*:*:*:*:*
    cpe:2.3:h:apple:iphone:1.1.4:*:*:*:*:*:*:*
  • cpe:2.3:h:apple:iphone:1.1.3:*:*:*:*:*:*:*
    cpe:2.3:h:apple:iphone:1.1.3:*:*:*:*:*:*:*
  • cpe:2.3:h:apple:ipod_touch:1.1:*:*:*:*:*:*:*
    cpe:2.3:h:apple:ipod_touch:1.1:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:iphone_os:1.1.2:*:*:*:*:*:*:*
    cpe:2.3:o:apple:iphone_os:1.1.2:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:iphone_os:1.0.1:*:*:*:*:*:*:*
    cpe:2.3:o:apple:iphone_os:1.0.1:*:*:*:*:*:*:*
  • cpe:2.3:h:apple:iphone:1.02:*:*:*:*:*:*:*
    cpe:2.3:h:apple:iphone:1.02:*:*:*:*:*:*:*
  • cpe:2.3:h:apple:ipod_touch:1.1.3:*:*:*:*:*:*:*
    cpe:2.3:h:apple:ipod_touch:1.1.3:*:*:*:*:*:*:*
  • cpe:2.3:h:apple:ipod_touch:1.1.4:*:*:*:*:*:*:*
    cpe:2.3:h:apple:ipod_touch:1.1.4:*:*:*:*:*:*:*
  • cpe:2.3:h:apple:ipod_touch:1.1.1:*:*:*:*:*:*:*
    cpe:2.3:h:apple:ipod_touch:1.1.1:*:*:*:*:*:*:*
  • cpe:2.3:a:webkit:javascriptcore:*:*:*:*:*:*:*:*
    cpe:2.3:a:webkit:javascriptcore:*:*:*:*:*:*:*:*
CVSS
Base: 6.8 (as of 09-08-2022 - 13:46)
Impact:
Exploitability:
CWE CWE-399
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:M/Au:N/C:P/I:P/A:P
refmap via4
apple APPLE-SA-2008-07-11
bid 30186
secunia 31074
vupen ADV-2008-2094
xf ipod-iphone-garbage-code-execution(43738)
Last major update 09-08-2022 - 13:46
Published 14-07-2008 - 18:41
Last modified 09-08-2022 - 13:46
Back to Top