Apple.WebKit.WebCore.HTML.Parsing.DoS

description-logoDescription

This indicates an attack attempt to exploit a denial-of-service vulnerability in Apple WebKit.
The vulnerability is caused by an error when WebCore handles a TD element with a malicious ROWSPAN attribute. It allows a remote attacker to crash the application via sending a crafted web page.

affected-products-logoAffected Products

Omni Group OmniWeb 5.5.3
Apple WebKit build 18794
Apple Safari 2.0.4
Apple Mac OS X Server 10.4.8
Apple Mac OS X 10.4.8

Impact logoImpact

Denial of Service: Remote attackers can crash vulnerable systems.

recomended-action-logoRecommended Actions

Currently we are not aware of any official patch for this issue.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)