Intrusion PreventionApple.Safari.JavaScript.PCRE.Heap.Overflow
Description
This indicates an attack attempt against a buffer overflow vulnerability in Apple Safari web browser.
The vulnerability is caused by an error when the vulnerable software handles Javascript Regular Expressions included in a web page. It allows a remote attacker to execute arbitrary code.
Affected Products
Apple Safari 3.0.2 Beta for Windows
Apple Safari 3.0.2 Beta
Apple iPhone 1
Impact
System compromise
Recommended Actions
The vendor has released APPLE-SA-2007-07-31 iPhone v1.0.1 Update to address this issue. For more details, go to
The vendor has also released Safari 3 Beta Update 3.0.3. Please see the following references for more information.
Apple Safari 3.0.2 Beta
Apple Safari3Beta.dmg
For Mac OS X
http://www.apple.com/safari/download/
Apple Safari 3.0.2 Beta for Windows
Apple SafariQuickTimeSetup.exe
Safari+QuickTime for Windows XP or Vista
http://www.apple.com/safari/download/
Apple SafariSetup.exe
For Windows XP or Vista
http://www.apple.com/safari/download/
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Detail |
|---|---|---|
| 2020-10-12 | 16.941 | Name:Apple. iPhone. Safari. Heap. Overflow:Apple. Safari. JavaScript. PCRE. Heap. Overflow |
| ID | 14839 |
| Created | Sep 04, 2007 |
| Updated | Nov 15, 2021 |
| Risk |
|
| CVE ID | CVE-2007-3944 |
| Exploit Prediction Score | 69.0% |
| Default Action | drop |
| Active | |
| Affected OS | Windows, MacOS |
| Affected App | Apple |