Intrusion Prevention

Apple.Safari.XML.Parser.Nested.XML.Tag.DoS

Description

This indicates an attack attempt against a remote Denial of Service vulnerability in the Safari web browser.
If legitimate users are enticed to access a specially crafted XML document with an excessively large number of nested "" elements, their Safari web browsers will crash.

Affected Products

Apple Safari 3.2.2 for Windows
Apple Safari 4 Beta
Apple Safari 3.2

Impact

Denial of Service: Remote attackers can crash vulnerable systems.

Recommended Actions

Currently we are not aware of any vendor supplied patch for this issue.

CVE References

CVE-2009-1233