{"id":"CVE-2009-3272","details":"Stack consumption vulnerability in WebKit.dll in WebKit in Apple Safari 3.2.3, and possibly other versions before 4.1.2, allows remote attackers to cause a denial of service (application crash) via JavaScript code that calls eval on a long string composed of A/ sequences.","modified":"2024-06-04T04:53:59.407845Z","published":"2009-09-21T19:30:00Z","withdrawn":"2024-06-30T15:58:29.488288Z","references":[{"type":"ADVISORY","url":"http://secunia.com/advisories/43068"},{"type":"ADVISORY","url":"http://www.vupen.com/english/advisories/2011/0212"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html"},{"type":"WEB","url":"http://www.exploit-db.com/exploits/9606"}],"affected":[{"package":{"name":"kde4libs","ecosystem":"Debian:10","purl":"pkg:deb/debian/kde4libs?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["4:4.14.38-3","4:4.14.38-4","4:4.14.38-4~exp1"],"ecosystem_specific":{"urgency":"unimportant"},"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2009-3272.json"}},{"package":{"name":"qt4-x11","ecosystem":"Debian:10","purl":"pkg:deb/debian/qt4-x11?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["4:4.8.7+dfsg-18","4:4.8.7+dfsg-18+deb10u1","4:4.8.7+dfsg-18+deb10u2","4:4.8.7+dfsg-19","4:4.8.7+dfsg-20"],"ecosystem_specific":{"urgency":"unimportant"},"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2009-3272.json"}}],"schema_version":"1.7.3"}