Safari@2.0 Security Vulnerabilities and Issues — Safari@2.0 CVE List

Lucene search

AppleSafari2.0

4 matches found

CVE•added 2005/12/22 11:3 p.m.•422 views

CVE-2005-4504

The khtml::RenderTableSection::ensureRows function in KHTMLParser in Apple Mac OS X 10.4.3 and earlier, as used by Safari and TextEdit, allows remote attackers to cause a denial of service (memory consumption and application crash) via HTML files with a large ROWSPAN attribute in a TD tag.

7.8CVSS6AI score0.21773EPSS

CVE•added 2005/10/26 12:2 a.m.•52 views

CVE-2005-2524

Safari after 2.0 in Apple Mac OS X 10.3.9 allows remote attackers to bypass domain restrictions via crafted web archives that cause Safari to render them as if they came from a different site.

5CVSS8.5AI score0.00396EPSS

CVE•added 2005/07/13 4:0 a.m.•42 views

CVE-2005-2272

Safari version 2.0 (412) does not clearly associate a Javascript dialog box with the web page that generated it, which allows remote attackers to spoof a dialog box from a trusted site and facilitates phishing attacks, aka the "Dialog Origin Spoofing Vulnerability."

2.6CVSS6.4AI score0.01251EPSS

CVE•added 2005/09/21 10:3 p.m.•34 views

CVE-2005-3018

Apple Safari allows remote attackers to cause a denial of service (application crash) via a crafted data:// URL.

5CVSS6.5AI score0.04452EPSS