CVE-2006-1988

The WebTextRenderer(WebInternal) _CG_drawRun:style:geometry: function in Apple Safari 2.0.3 allows remote attackers to cause a denial of service (application crash) via an HTML LI tag with a large VALUE attribute (list item number), which triggers a null dereference in QPainter::drawText, probably due to a failed memory allocation that uses the VALUE.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:apple:safari:2.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:2.0.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:2.0.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:2.0.3:*:*:*:*:*:*:*

History

21 Nov 2024, 00:10

Type Values Removed Values Added
References () http://secunia.com/advisories/19686 - () http://secunia.com/advisories/19686 -
References () http://security-protocols.com/poc/sp-x26-2.html - () http://security-protocols.com/poc/sp-x26-2.html -
References () http://www.osvdb.org/24823 - () http://www.osvdb.org/24823 -
References () http://www.security-protocols.com/sp-x26-advisory.php - Exploit, Vendor Advisory () http://www.security-protocols.com/sp-x26-advisory.php - Exploit, Vendor Advisory
References () http://www.securityfocus.com/bid/17634 - Exploit () http://www.securityfocus.com/bid/17634 - Exploit
References () http://www.vupen.com/english/advisories/2006/1452 - () http://www.vupen.com/english/advisories/2006/1452 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/25946 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/25946 -

Information

Published : 2006-04-21 22:02

Updated : 2024-11-21 00:10


NVD link : CVE-2006-1988

Mitre link : CVE-2006-1988

CVE.ORG link : CVE-2006-1988


JSON object : View

Products Affected

apple

  • safari