Denial of Service Vulnerability in khtml::RenderTableSection::ensureRows Function

Denial of Service Vulnerability in khtml::RenderTableSection::ensureRows Function

CVE-2005-4504 · HIGH Severity

AV:N/AC:L/AU:N/C:N/I:N/A:C

The khtml::RenderTableSection::ensureRows function in KHTMLParser in Apple Mac OS X 10.4.3 and earlier, as used by Safari and TextEdit, allows remote attackers to cause a denial of service (memory consumption and application crash) via HTML files with a large ROWSPAN attribute in a TD tag.

Learn more about our Cis Benchmark Audit For Safari Browser.