Lucene search
HistoryJul 21, 2011 - 11:55 p.m.
CVE-2011-0215
cve-2011-0215
imageio
apple safari
windows
re-entrancy issues
arbitrary code execution
denial of service
tiff file
nvd
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
8.4 High
AI Score
Confidence
High
0.009 Low
EPSS
Percentile
82.3%
ImageIO in Apple Safari before 5.0.6 on Windows does not properly address re-entrancy issues, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted TIFF file.
Affected configurations
Node
appleimageio
ORapplesafariRangeโค5.0.5
ORapplesafariMatch1.0
ORapplesafariMatch1.0beta
ORapplesafariMatch1.0beta2
ORapplesafariMatch1.0.0
ORapplesafariMatch1.0.0b1
ORapplesafariMatch1.0.0b2
ORapplesafariMatch1.0.1
ORapplesafariMatch1.0.2
ORapplesafariMatch1.0.3
ORapplesafariMatch1.0.385.8
ORapplesafariMatch1.0.385.8.1
ORapplesafariMatch1.1
ORapplesafariMatch1.1.0
ORapplesafariMatch1.1.1
ORapplesafariMatch1.2
ORapplesafariMatch1.2.0
ORapplesafariMatch1.2.1
ORapplesafariMatch1.2.2
ORapplesafariMatch1.2.3
ORapplesafariMatch1.2.4
ORapplesafariMatch1.2.5
ORapplesafariMatch1.3
ORapplesafariMatch1.3.0
ORapplesafariMatch1.3.1
ORapplesafariMatch1.3.2
ORapplesafariMatch1.3.2312.5
ORapplesafariMatch1.3.2312.6
ORapplesafariMatch2
ORapplesafariMatch2.0
ORapplesafariMatch2.0.0
ORapplesafariMatch2.0.1
ORapplesafariMatch2.0.2
ORapplesafariMatch2.0.3
ORapplesafariMatch2.0.3417.8
ORapplesafariMatch2.0.3417.9
ORapplesafariMatch2.0.3417.9.2
ORapplesafariMatch2.0.3417.9.3
ORapplesafariMatch2.0.4
ORapplesafariMatch3
ORapplesafariMatch3.0
ORapplesafariMatch3.0.0
ORapplesafariMatch3.0.0b
ORapplesafariMatch3.0.1
ORapplesafariMatch3.0.1b
ORapplesafariMatch3.0.2
ORapplesafariMatch3.0.2b
ORapplesafariMatch3.0.3
ORapplesafariMatch3.0.3b
ORapplesafariMatch3.0.4
ORapplesafariMatch3.0.4b
ORapplesafariMatch3.1.0
ORapplesafariMatch3.1.0b
ORapplesafariMatch3.1.1
ORapplesafariMatch3.1.2
ORapplesafariMatch3.2.0
ORapplesafariMatch3.2.1
ORapplesafariMatch3.2.2
ORapplesafariMatch4.1
ORapplesafariMatch4.1.1
ORapplesafariMatch4.1.2
ORapplesafariMatch5.0
ORapplesafariMatch5.0.1
ORapplesafariMatch5.0.2
ORapplesafariMatch5.0.3
ORapplesafariMatch5.0.4
microsoftwindows_7
ORmicrosoftwindows_vista
ORmicrosoftwindows_xpsp2
ORmicrosoftwindows_xpsp3
Related
cvelist
cvelist
CVE-2011-0215
2011-07-21 23:00:00
nvd
nvd
CVE-2011-0215
2011-07-21 23:55:01
securityvulns
securityvulns
iDefense Security Advisory 07.20.11: Safari WebKit TIFF Use-After-Free Vulnerability
2011-07-22 00:00:00
APPLE-SA-2011-07-20-1 Safari 5.1 and Safari 5.0.6
2011-07-22 00:00:00
WebKit / Apple Safari / Google Chrome multiple security vulnerabilities
2011-08-01 00:00:00
prion
prion
Code injection
2011-07-21 23:55:00
openvas
openvas
Apple Safari Multiple Vulnerabilities (Jul 2011)
2011-07-27 00:00:00
Apple Safari Multiple Vulnerabilities - July 2011
2011-07-27 00:00:00
Apple Safari Multiple Vulnerabilities (Jul 2011) - Mac OS X
2011-08-12 00:00:00
nessus
nessus
Mac OS X : Apple Safari < 5.1 / 5.0.6
2011-07-21 00:00:00
Safari < 5.1 Multiple Vulnerabilities
2011-07-21 00:00:00
Apple iTunes < 10.5 Multiple Vulnerabilities (credentialed check)
2011-10-12 00:00:00
seebug
seebug
Apple iTunesๅคไธชๅฎๅ
จๆผๆด
2011-10-13 00:00:00
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
8.4 High
AI Score
Confidence
High
0.009 Low
EPSS
Percentile
82.3%
Related for CVE-2011-0215