Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Stack consumption vulnerability in the WebCore::CSSSelector function in WebKit, as used in Apple Safari 4.0.4, Apple Safari on iPhone OS and iPhone OS for iPod touch, and Google Chrome 4.0.249, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a STYLE element composed of a large number of *> sequences.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
WebKit样式标签远程拒绝服务漏洞
Vulnerability Description
WebKit是KDE、苹果(Apple)、谷歌(Google)等公司共同开发的一套开源Web浏览器引擎,目前被Apple Safari及Google Chrome等浏览器使用。 WebKit中所使用的WebCore::CSSSelector函数存在栈耗尽漏洞。用户在HTML网页的STYLE元素中包含有大量的"*>"字符就会导致浏览器崩溃。
CVSS Information
N/A
Vulnerability Type
N/A