Mac OS X KHTMLParser Remote Denial of Service Vulnerability

Posted by deepquest on December 26, 2005 – 3:27 am

A vulnerability in Mac OS X has been reported, which can be exploited by remote users to trigger denial of service conditions.

The weakness is caused due to an error in the KHTMLParser when parsing certain malformed HTML documents. This can be exploited to crash an application that uses the parser via a specially crafted HTML file. In certain cases, this may cause the system to become unresponsive.

[b][url=http://deepquest.code511.com/blog/saf202.html]Don’t click me[/url][/b]

Confirmed in TextEdit and Safari in Mac OS X with Security Update 2005-009. Other applications that use the parser may also be affected.

This post is under “Apple” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« Just how extensive is NSA’s spy program? Criminals target viruses for cash »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Mac OS X KHTMLParser Remote Denial of Service Vulnerability

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL