Description
WebCore in Apple WebKit build 18794 allows remote attackers to cause a denial of service (null dereference and application crash) via a TD element with a large number in the ROWSPAN attribute, as demonstrated by a crash of OmniWeb 5.5.3 on Mac OS X 10.4.8, a different vulnerability than CVE-2006-2019.
CVSS breakdown
CVSS 3.1
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High
Affected products
- Apple / mac_os_x10.4.8 – 10.4.8
- Apple / Safari2.0.4_419.3 – 2.0.4_419.3
- Apple / webkitbuild_18794 – build_18794
- omnigroup / omniweb5.5.3 – 5.5.3