Null pointer dereference

Apple Safari 4 Beta build 528.16 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a feeds: URI beginning with a 1 % percent, 2 open curly bracket, 3 close curly bracket, 4 ^ caret, 5 backquote, or 6 | pipe character, followed by an & ampersan...

Apple Safari畸形feeds: URI空指针引用拒绝服务漏洞

BUGTRAQ ID: 33909 Safari是苹果家族操作系统中默认捆绑的WEB浏览器。 Apple Safari没有充分地过滤feeds: URI中所提供的用户输入，如果用户受骗跟随了恶意链接，就会触发空指针引用，导致Safari进程崩溃。 Apple Safari 4 Beta 厂商补丁： Apple ----- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://www.apple.com feeds:%&www.rec-sec.com/feed/ feeds:&www.rec-sec.com/feed/...

Apple Safari 4 - 'feeds:' URI Null Pointer Dereference Remote Denial of Service

source: https://www.securityfocus.com/bid/33909/info Apple Safari is prone to a denial-of-service vulnerability that stems from a NULL-pointer dereference. Attackers can exploit this issue to crash the affected application, denying service to legitimate users. Apple Safari 4 Beta is vulnerable;...

Apple Safari 4 Beta feeds: Denial Of Service

Apple Safari 4 Beta feeds: URI NULL Pointer Dereference Denial of Service Vulnerability Date: Feb 25 2009 Class: Input Validation Error Local: Yes Remote: Yes Vulnerable Versions: Apple Safari 4 528.16 Public Beta Note: MacOS X versions not tested. Description: Apple Safari is prone to a...