Lucene search

[email protected]CVE-2008-0043

HistoryFeb 08, 2008 - 2:00 a.m.

CVE-2008-0043

2008-02-0802:00:00

CWE-94

[email protected]

web.nvd.nist.gov

827

cve-2008-0043

apple iphoto

format string vulnerability

remote code execution

photocast subscriptions

nvd

7.4 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.017 Low

EPSS

Percentile

87.8%

JSON

Format string vulnerability in Apple iPhoto before 7.1.2 allows remote attackers to execute arbitrary code via photocast subscriptions.

CPENameOperatorVersion
apple:iphotoapple iphotole7.1

CPE	Name	Operator	Version
apple:iphoto	apple iphoto	le	7.1

References

docs.info.apple.com/article.html?artnum=307398

lists.apple.com/archives/security-announce/2008/Feb/msg00000.html

secunia.com/advisories/28805

www.securityfocus.com/bid/27636

www.securitytracker.com/id?1019307

www.vupen.com/english/advisories/2008/0428/references

7.4 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.017 Low

EPSS

Percentile

87.8%

JSON

Related for CVE-2008-0043

nessus1 prion2 cvelist2 cve1