What is the severity of CVE-2004-1199?

CVE-2004-1199 is classified as a denial of service vulnerability which can cause application crashes.

How do I fix CVE-2004-1199?

To mitigate CVE-2004-1199, users should update to a later version of Safari that addresses this issue.

What software is affected by CVE-2004-1199?

CVE-2004-1199 affects several versions of Safari, including 1.0, 1.1, 1.2, and 1.2.4 on Mac OS X.

How does CVE-2004-1199 exploit memory exhaustion?

CVE-2004-1199 exploits memory exhaustion by using JavaScript to create and sort continuously nested arrays.

Is there a workaround for CVE-2004-1199?

A temporary workaround for CVE-2004-1199 may involve disabling JavaScript in Safari until an update is applied.

Vulnerability/
CVE-2004-1199

medium

CWE

NVD-CWE-Other

15/12/2004

8/8/2024

CVE-2004-1199

First published: Wed Dec 15 2004(Updated: )

Safari 1.2.4 on Mac OS X 10.3.6 allows remote attackers to cause a denial of service (application crash from memory exhaustion), as demonstrated using Javascript code that continuously creates nested arrays and then sorts the newly created arrays.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Apple Mobile Safari	=1.2.2
Apple Mobile Safari	=1.0
Apple Mobile Safari	=1.2.1
Apple Mobile Safari	=1.1
Apple Mobile Safari	=1.2
Apple Mobile Safari	=beta2
Apple Mobile Safari	=1.2.3

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2004-1199?
CVE-2004-1199 is classified as a denial of service vulnerability which can cause application crashes.
How do I fix CVE-2004-1199?
To mitigate CVE-2004-1199, users should update to a later version of Safari that addresses this issue.
What software is affected by CVE-2004-1199?
CVE-2004-1199 affects several versions of Safari, including 1.0, 1.1, 1.2, and 1.2.4 on Mac OS X.
How does CVE-2004-1199 exploit memory exhaustion?
CVE-2004-1199 exploits memory exhaustion by using JavaScript to create and sort continuously nested arrays.
Is there a workaround for CVE-2004-1199?
A temporary workaround for CVE-2004-1199 may involve disabling JavaScript in Safari until an update is applied.

agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/references
agent/weakness
agent/author
agent/severity
agent/description
agent/first-publish-date
agent/event
agent/source
agent/tags
collector/nvd-historical
vendor/apple
product/safari
canonical/apple safari
agent/software-canonical-lookup-request
collector/nvd-index
canonical/apple mobile safari
version/apple mobile safari/1.2.2
version/apple mobile safari/1.0
version/apple mobile safari/1.2.1
version/apple mobile safari/1.1
version/apple mobile safari/1.2
version/apple mobile safari/beta2
version/apple mobile safari/1.2.3

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.