The Javascript engine in Safari 1.2 and earlier allows remote attackers to cause a denial of service (segmentation fault) by creating a new Array object with a large size value, then writing into that array.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Safari | Apple | 1.0 | 1.0 |
Safari | Apple | 1.1 | 1.1 |
Safari | Apple | beta2 | beta2 |