CVE-2006-1988

Name of the Vulnerable Software and Affected Versions Apple Safari version 2.0.3

Description The issue allows remote attackers to cause a denial of service, resulting in an application crash. This is achieved by using an HTML LI tag with a large VALUE attribute, which triggers a null dereference in QPainter::drawText, likely due to a failed memory allocation that utilizes the VALUE.

Recommendations For Apple Safari version 2.0.3, consider avoiding the use of large VALUE attributes in HTML LI tags until a fix is available. As a temporary workaround, restrict the use of the CG drawRun:style:geometry: function in WebTextRenderer to minimize the risk of exploitation.