Lucene search

[email protected]CVE-2008-4236

HistoryDec 17, 2008 - 1:30 a.m.

CVE-2008-4236

2008-12-1701:30:00

CWE-399

[email protected]

web.nvd.nist.gov

cve-2008-4236

ats

apple

mac os x

denial of service

infinite loop

pdf

font

crafted

remote attackers

7.1 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

5.9 Medium

AI Score

Confidence

Low

0.009 Low

EPSS

Percentile

83.1%

JSON

Apple Type Services (ATS) in Apple Mac OS X 10.5 before 10.5.6 allows remote attackers to cause a denial of service (infinite loop) via a crafted embedded font in a PDF file.

Affected configurations

NVD

Node

applemac_os_xRange≤10.5.5

applemac_os_xMatch10.5

applemac_os_xMatch10.5.1

applemac_os_xMatch10.5.2

applemac_os_xMatch10.5.3

applemac_os_xMatch10.5.4

applemac_os_x_serverRange≤10.5.5

applemac_os_x_serverMatch10.5

applemac_os_x_serverMatch10.5.1

applemac_os_x_serverMatch10.5.2

applemac_os_x_serverMatch10.5.3

applemac_os_x_serverMatch10.5.4

CPENameOperatorVersion
apple:mac_os_xapple mac os xle10.5.5
apple:mac_os_xapple mac os xeq10.5
apple:mac_os_xapple mac os xeq10.5.1
apple:mac_os_xapple mac os xeq10.5.2
apple:mac_os_xapple mac os xeq10.5.3
apple:mac_os_xapple mac os xeq10.5.4
apple:mac_os_x_serverapple mac os x serverle10.5.5
apple:mac_os_x_serverapple mac os x servereq10.5
apple:mac_os_x_serverapple mac os x servereq10.5.1
apple:mac_os_x_serverapple mac os x servereq10.5.2

CPE	Name	Operator	Version
apple:mac_os_x	apple mac os x	le	10.5.5
apple:mac_os_x	apple mac os x	eq	10.5
apple:mac_os_x	apple mac os x	eq	10.5.1
apple:mac_os_x	apple mac os x	eq	10.5.2
apple:mac_os_x	apple mac os x	eq	10.5.3
apple:mac_os_x	apple mac os x	eq	10.5.4
apple:mac_os_x_server	apple mac os x server	le	10.5.5
apple:mac_os_x_server	apple mac os x server	eq	10.5
apple:mac_os_x_server	apple mac os x server	eq	10.5.1
apple:mac_os_x_server	apple mac os x server	eq	10.5.2