Vulnerability Detail

Apple Mac OS X ImageIO buffer overflow vulnerability

Date Discovered:
23 Sep 2005

Date Published:
23 Sep 2005

Last Updated:
23 Sep 2005

Threat Assessment

Overall Risk: Medium

Popularity : Low

Impact: High

Simplicity: Low

Characteristics

Vulnerability ID: 33423
Discovered By: anonymous

Exploitable Locally: No
Exploitable Remotely: Yes

Impact: Remote attackers can execute arbitrary code.

Root Cause: Software Vulnerability

Description

Recommendations

Affected Technologies

References

Description

Apple Mac OS X contains a buffer overflow vulnerability that may allow remote attackers to execute arbitrary code. The vulnerability is due to improper bounds checking performed in ImageIO when viewing a corrupt GIF image. Remote attackers can exploit this vulnerability and execute arbitrary code.

Recommendations

Affected Technologies

Apple: Apple Mac OS X Client 10.4.2 PowerPC
Apple: Apple Mac OS X Server 10.4.2 PowerPC

References

apple: 2005-008
Mitre CVE: CAN-2005-2747

CA Global Security Advisor

Current threat condition: Low

Documents and Tools

Find Threats

Viruses Spyware
Vulnerabilities All

Page Tools