7.8 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.004 Low
EPSS
Percentile
72.6%
Buffer overflow in Apple Core Image Fun House 2.0 and earlier in CoreImage Examples in Xcode tools before 3.1 allows user-assisted attackers to execute arbitrary code or cause a denial of service (application crash) via a .funhouse file with a string XML element that contains many characters.
CPE | Name | Operator | Version |
---|---|---|---|
apple:core_image_fun_house | apple core image fun house | le | 2.0 |
lists.apple.com/archives/security-announce//2008/Jul/msg00002.html
secunia.com/advisories/31060
securityreason.com/securityalert/3988
support.apple.com/kb/HT2352
www.securityfocus.com/archive/1/494230/100/0/threaded
www.securityfocus.com/bid/30189
www.securitytracker.com/id?1020472
www.vupen.com/english/advisories/2008/2093/references
exchange.xforce.ibmcloud.com/vulnerabilities/43733
www.exploit-db.com/exploits/6043