← Back

CVE-2008-4233

nvd nist
Published: Nov 25, 2008Modified: Apr 23, 2026

JSON object

Loading...
2.6
Vector
AV:N/AC:H/Au:N/C:N/I:N/A:P
Exploitability: 4.9 / Impact: 2.9
Source: NVD

Description

Safari in Apple iPhone OS 1.0 through 2.1 and iPhone OS for iPod touch 1.1 through 2.1 does not isolate the call-approval dialog from the process of launching new applications, which allows remote attackers to make arbitrary phone calls via a crafted HTML document.

Affected (14)

Products: Apple: Iphone Os, Safari
Apple
2 products
Iphone Os
Safari
Configuration A
14 vulnerable · 2 platform
Vulnerable SoftwareAffected Versions
Apple
Iphone Os
Version 1.0.1
Iphone Os
Version 1.0.2
Iphone Os
Version 1.0
Iphone Os
Version 1.1.1
Iphone Os
Version 1.1.2
Iphone Os
Version 1.1.3
Iphone Os
Version 1.1.4
Iphone Os
Version 1.1.5
Iphone Os
Version 1.1
Iphone Os
Version 2.0.1
Iphone Os
Version 2.0.2
Iphone Os
Version 2.0
Iphone Os
Version 2.1
Safari
All versions
Running on/withPlatform Versions
Apple
Iphone Os
All versions
Apple
Ipod Touch
All versions

References (14)

Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.