PT-2007-1813 · Apple · Webkit
Publicado
2007-01-18
·
Atualizado
2008-09-05
·
CVE-2007-0342
CVSS v3.1
7.5
Alta
| Vetor | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions:
Apple WebKit build 18794
Description:
The issue allows remote attackers to cause a denial of service, resulting in a null dereference and application crash. This can be achieved via a TD element with a large number in the
ROWSPAN attribute.Recommendations:
For Apple WebKit build 18794, consider restricting the use of the ROWSPAN attribute in TD elements to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
NULL Pointer Dereference
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Webkit