WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4; and webkitgtk before 1.2.6; allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted regular expression.
Exploitability
AV:NAC:MAu:NImpact
C:CI:CA:C9.3/AV:N/AC:M/Au:N/C:C/I:C/A:C