CVE-2005-4504 | Vulnerability Database | Aqua Security

The khtml::RenderTableSection::ensureRows function in KHTMLParser in Apple Mac OS X 10.4.3 and earlier, as used by Safari and TextEdit, allows remote attackers to cause a denial of service (memory consumption and application crash) via HTML files with a large ROWSPAN attribute in a TD tag.

Affected Software

Name	Vendor	Start Version	End Version
Safari	Apple	1.0 (including)	1.0 (including)
Safari	Apple	1.1 (including)	1.1 (including)
Safari	Apple	1.2 (including)	1.2 (including)
Safari	Apple	1.2.1 (including)	1.2.1 (including)
Safari	Apple	1.2.2 (including)	1.2.2 (including)
Safari	Apple	1.2.3 (including)	1.2.3 (including)
Safari	Apple	1.3 (including)	1.3 (including)
Safari	Apple	2.0 (including)	2.0 (including)
Safari	Apple	2.0.1 (including)	2.0.1 (including)
Safari	Apple	2.0.2 (including)	2.0.2 (including)
Textedit	Apple	*	1.4 (including)

References

http://docs.info.apple.com/article.html?artnum=303382
http://docs.info.apple.com/jarticle.html?artnum=303382-en
http://lists.apple.com/archives/security-announce/2006/Mar/msg00000.html
http://secunia.com/advisories/18220
http://secunia.com/advisories/19064
http://security-protocols.com/advisory/sp-x22-advisory.txt
http://www.kb.cert.org/vuls/id/351217
http://www.securityfocus.com/bid/16045
http://www.securityfocus.com/bid/16907
http://www.us-cert.gov/cas/techalerts/TA06-062A.html
http://www.vupen.com/english/advisories/2005/3058
http://www.vupen.com/english/advisories/2006/0791
https://exchange.xforce.ibmcloud.com/vulnerabilities/23819

NVD	https://nvd.nist.gov/vuln/detail/CVE-2005-4504
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html