Lucene search

[email protected]CVE-2008-0997

HistoryMar 18, 2008 - 10:44 p.m.

CVE-2008-0997

2008-03-1822:44:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2008-0997

appkit

apple

mac os x

buffer overflow

denial of service

arbitrary code

postscript

ppd file

network printer

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

9.2 High

AI Score

Confidence

High

0.026 Low

EPSS

Percentile

90.3%

JSON

Stack-based buffer overflow in AppKit in Apple Mac OS X 10.4.11 allows user-assisted remote attackers to cause a denial of service (application termination) and execute arbitrary code via a crafted PostScript Printer Description (PPD) file that is not properly handled when querying a network printer.

Affected configurations

NVD

Node

applemac_os_xMatch10.4.11

applemac_os_x_serverMatch10.4.11

CPENameOperatorVersion
apple:mac_os_xapple mac os xeq10.4.11
apple:mac_os_x_serverapple mac os x servereq10.4.11

CPE	Name	Operator	Version
apple:mac_os_x	apple mac os x	eq	10.4.11
apple:mac_os_x_server	apple mac os x server	eq	10.4.11

References

docs.info.apple.com/article.html?artnum=307562

lists.apple.com/archives/security-announce/2008/Mar/msg00001.html

www.securityfocus.com/bid/28304

www.securityfocus.com/bid/28364

www.securitytracker.com/id?1019648

www.us-cert.gov/cas/techalerts/TA08-079A.html

www.vupen.com/english/advisories/2008/0924/references

exchange.xforce.ibmcloud.com/vulnerabilities/41282

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

9.2 High

AI Score

Confidence

High

0.026 Low

EPSS

Percentile

90.3%

JSON

Related for CVE-2008-0997

nvd1 prion1 cvelist1 seebug1 nessus1