CVE-2005-4504
published 2005-12-22CVE-2005-4504: The khtml::RenderTableSection::ensureRows function in KHTMLParser in Apple Mac OS X 10.4.3 and earlier, as used by Safari and TextEdit, allows remote attackers…
PriorityP333high7.8CVSS 2.0
AVNACLAuNCNINAC
EXPLOIT
EPSS
11.91%
95.6th percentile
The khtml::RenderTableSection::ensureRows function in KHTMLParser in Apple Mac OS X 10.4.3 and earlier, as used by Safari and TextEdit, allows remote attackers to cause a denial of service (memory consumption and application crash) via HTML files with a large ROWSPAN attribute in a TD tag.
Affected
79 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | mac_os_x | — | — |
| apple | mac_os_x | — | — |
| apple | mac_os_x | — | — |
| apple | mac_os_x | — | — |
| apple | mac_os_x | — | — |
| apple | mac_os_x | — | — |
| apple | mac_os_x | — | — |
| apple | mac_os_x | — | — |
| apple | mac_os_x | — | — |
| apple | mac_os_x | — | — |
| apple | mac_os_x | — | — |
| apple | mac_os_x | — | — |
| apple | mac_os_x | — | — |
| apple | mac_os_x | — | — |
| apple | mac_os_x | — | — |
| apple | mac_os_x | — | — |
| apple | mac_os_x | — | — |
| apple | mac_os_x | — | — |
| apple | mac_os_x | — | — |
| apple | mac_os_x | — | — |
| apple | mac_os_x | — | — |
| apple | mac_os_x | — | — |
| apple | mac_os_x | — | — |
| apple | mac_os_x | — | — |
| apple | mac_os_x | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-p6x7-qq78-p256: Stack-based buffer overflow in Safari in Mac OS X 10
ghsa_unreviewed·2022-05-01·CVSS 7.8
CVE-2006-0387 [HIGH] GHSA-p6x7-qq78-p256: Stack-based buffer overflow in Safari in Mac OS X 10
Stack-based buffer overflow in Safari in Mac OS X 10.4.5 and earlier, and 10.3.9 and earlier, allows remote attackers to execute arbitrary code via unspecified vectors involving a web page with crafted JavaScript, a different vulnerability than CVE-2005-4504.
GHSA
GHSA-3cpr-wjhh-6mx6: The khtml::RenderTableSection::ensureRows function in KHTMLParser in Apple Mac OS X 10
ghsa_unreviewed·2022-05-01
CVE-2005-4504 [HIGH] GHSA-3cpr-wjhh-6mx6: The khtml::RenderTableSection::ensureRows function in KHTMLParser in Apple Mac OS X 10
The khtml::RenderTableSection::ensureRows function in KHTMLParser in Apple Mac OS X 10.4.3 and earlier, as used by Safari and TextEdit, allows remote attackers to cause a denial of service (memory consumption and application crash) via HTML files with a large ROWSPAN attribute in a TD tag.
No detection rules found.
No writeups or analysis indexed.
http://docs.info.apple.com/article.html?artnum=303382http://docs.info.apple.com/jarticle.html?artnum=303382-enhttp://lists.apple.com/archives/security-announce/2006/Mar/msg00000.htmlhttp://secunia.com/advisories/18220http://secunia.com/advisories/19064http://security-protocols.com/advisory/sp-x22-advisory.txthttp://www.kb.cert.org/vuls/id/351217http://www.securityfocus.com/bid/16045http://www.securityfocus.com/bid/16907http://www.us-cert.gov/cas/techalerts/TA06-062A.htmlhttp://www.vupen.com/english/advisories/2005/3058http://www.vupen.com/english/advisories/2006/0791https://exchange.xforce.ibmcloud.com/vulnerabilities/23819http://docs.info.apple.com/article.html?artnum=303382http://docs.info.apple.com/jarticle.html?artnum=303382-enhttp://lists.apple.com/archives/security-announce/2006/Mar/msg00000.htmlhttp://secunia.com/advisories/18220http://secunia.com/advisories/19064http://security-protocols.com/advisory/sp-x22-advisory.txthttp://www.kb.cert.org/vuls/id/351217http://www.securityfocus.com/bid/16045http://www.securityfocus.com/bid/16907http://www.us-cert.gov/cas/techalerts/TA06-062A.htmlhttp://www.vupen.com/english/advisories/2005/3058http://www.vupen.com/english/advisories/2006/0791https://exchange.xforce.ibmcloud.com/vulnerabilities/23819
2005-12-22
Published