Signature Detail

HTTP: Safari Webkit Floating Point Buffer Overflow

This signature detects attempts to exploit a known vulnerability in Apple Safari. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the client.

Extended Description

WebKit is prone to a remote buffer-overflow vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the application. Failed exploit attempts will result in a denial-of-service condition. Versions prior to Apple Safari 4.0.3 are vulnerable; other applications using WebKit may also be affected.

Affected Products

• Apple iPhone 2.0
• Apple iPhone 2.0.1
• Apple iPhone 2.0.2
• Apple iPhone 2.1
• Apple iPhone 2.2
• Apple iPhone 2.2.1
• Apple iPhone 3.0
• Apple iPhone 3.0.1
• Apple iPhone 3.1
• Apple iPhone 3.1.2
• Apple iPhone 3.1.3
• Apple iPod Touch 2.0
• Apple iPod Touch 2.0.1
• Apple iPod Touch 2.0.2
• Apple iPod Touch 2.1
• Apple iPod Touch 2.2
• Apple iPod Touch 2.2.1
• Apple iPod Touch 3.0
• Apple iPod Touch 3.1.1
• Apple iPod Touch 3.1.2
• Apple iPod Touch 3.1.3
• Apple Safari 3
• Apple Safari 3.0.1 Beta
• Apple Safari 3.0.1 Beta For Windows
• Apple Safari 3.0.2 Beta
• Apple Safari 3.0.2 Beta For Windows
• Apple Safari 3.0.3 Beta
• Apple Safari 3.0.3 Beta For Windows
• Apple Safari 3.0.4 Beta For Windows
• Apple Safari 3.1
• Apple Safari 3.1.1
• Apple Safari 3.1.1 For Windows
• Apple Safari 3.1.2
• Apple Safari 3.1.2 For Windows
• Apple Safari 3.1 For Windows
• Apple Safari 3.2
• Apple Safari 3.2.2 For Windows
• Apple Safari 3.2.3
• Apple Safari 3.2.3 For Windows
• Apple Safari 3 Beta
• Apple Safari 3 Beta For Windows
• Apple Safari 4
• Apple Safari 4.0.1
• Apple Safari 4.0.2
• Apple Safari 4.0.2 For Windows
• Apple Safari 4 Beta
• Apple Safari 4 For Windows

References

• BugTraq: 36023
• CVE: CVE-2009-2195
• URL: http://support.apple.com/kb/HT3733