The khtml::RenderTableSection::ensureRows function in KHTMLParser in Apple Mac OS X 10.4.3 and earlier, as used by Safari and TextEdit, allows remote attackers to cause a denial of service (memory consumption and application crash) via HTML files with a large ROWSPAN attribute in a TD tag.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
21 Nov 2024, 00:04
Type | Values Removed | Values Added |
---|---|---|
References | () http://docs.info.apple.com/article.html?artnum=303382 - | |
References | () http://docs.info.apple.com/jarticle.html?artnum=303382-en - | |
References | () http://lists.apple.com/archives/security-announce/2006/Mar/msg00000.html - | |
References | () http://secunia.com/advisories/18220 - Vendor Advisory | |
References | () http://secunia.com/advisories/19064 - | |
References | () http://security-protocols.com/advisory/sp-x22-advisory.txt - Exploit, Vendor Advisory | |
References | () http://www.kb.cert.org/vuls/id/351217 - US Government Resource | |
References | () http://www.securityfocus.com/bid/16045 - Exploit | |
References | () http://www.securityfocus.com/bid/16907 - | |
References | () http://www.us-cert.gov/cas/techalerts/TA06-062A.html - US Government Resource | |
References | () http://www.vupen.com/english/advisories/2005/3058 - | |
References | () http://www.vupen.com/english/advisories/2006/0791 - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/23819 - |
Information
Published : 2005-12-22 23:03
Updated : 2024-11-21 00:04
NVD link : CVE-2005-4504
Mitre link : CVE-2005-4504
CVE.ORG link : CVE-2005-4504
JSON object : View
Products Affected
apple
- textedit
- mac_os_x
- mac_os_x_server
- safari
CWE