N/A

The CFCharacterSetInitInlineBuffer method in CoreFoundation.dll in Apple Safari 3.2.3 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) or possibly execute arbitrary code via a "high-bit character" in a URL fragment for an unspecified protocol.

N/A

N/A

Apple Safari CoreFoundation.dll拒绝服务漏洞

Apple Safari 3.2.3的CoreFoundation.dll存在CFCharacterSetInitInlineBuffer method会允许远程攻击者通过未知协议中一个ＵＲＬ碎片中的"高比特字符"来造成服务拒绝(NULL指示器瘫痪和申请失败)或可能执行任意代码。

N/A

N/A