WebCore in Apple Safari does not properly perform garbage collection of JavaScript document elements, which allows remote attackers to execute arbitrary code or cause a denial of service (heap corruption and application crash) via a reference to the ownerNode property of a copied CSSStyleSheet object of a STYLE element, as originally demonstrated on Apple iPhone before 2.0 and iPod touch before 2.0, a different vulnerability than CVE-2008-1590.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Iphone | Apple | 1.0 (including) | 1.0 (including) |
| Iphone | Apple | 1.1 (including) | 1.1 (including) |
| Iphone | Apple | 1.1.3 (including) | 1.1.3 (including) |
| Ipod_touch | Apple | * | 1.1.4 (including) |
| Ipod_touch | Apple | 1.1 (including) | 1.1 (including) |
| Ipod_touch | Apple | 1.1.1 (including) | 1.1.1 (including) |
| Ipod_touch | Apple | 1.1.2 (including) | 1.1.2 (including) |
| Ipod_touch | Apple | 1.1.3 (including) | 1.1.3 (including) |
| Iphone_os | Apple | * | 1.1.4 (including) |
| Iphone_os | Apple | 1.0.1 (including) | 1.0.1 (including) |
| Iphone_os | Apple | 1.0.2 (including) | 1.0.2 (including) |
| Iphone_os | Apple | 1.1.1 (including) | 1.1.1 (including) |
| Iphone_os | Apple | 1.1.2 (including) | 1.1.2 (including) |