Lucene search

[email protected]CVE-2011-0241

HistoryJul 21, 2011 - 11:55 p.m.

CVE-2011-0241

2011-07-2123:55:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2011-0241

imageio

apple safari

buffer overflow

remote attackers

arbitrary code

denial of service

tiff

ccitt group 4

nvd

7.8 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.029 Low

EPSS

Percentile

90.7%

JSON

Heap-based buffer overflow in ImageIO in Apple Safari before 5.0.6 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted TIFF image with CCITT Group 4 encoding.

CPENameOperatorVersion
apple:imageioapple imageioeq*
apple:safariapple safarile5.0.5
apple:safariapple safarieq1.0
apple:safariapple safarieq1.0.0
apple:safariapple safarieq1.0.0b1
apple:safariapple safarieq1.0.0b2
apple:safariapple safarieq1.0.1
apple:safariapple safarieq1.0.2
apple:safariapple safarieq1.0.3
apple:safariapple safarieq1.1

CPE	Name	Operator	Version
apple:imageio	apple imageio	eq	*
apple:safari	apple safari	le	5.0.5
apple:safari	apple safari	eq	1.0
apple:safari	apple safari	eq	1.0.0
apple:safari	apple safari	eq	1.0.0b1
apple:safari	apple safari	eq	1.0.0b2
apple:safari	apple safari	eq	1.0.1
apple:safari	apple safari	eq	1.0.2
apple:safari	apple safari	eq	1.0.3
apple:safari	apple safari	eq	1.1

Rows per page:

1-10 of 571

References

lists.apple.com/archives/security-announce/2011//Jul/msg00002.html

lists.apple.com/archives/Security-announce/2011//Oct/msg00001.html

lists.apple.com/archives/Security-announce/2011//Oct/msg00002.html

lists.apple.com/archives/security-announce/2012/Feb/msg00000.html

lists.apple.com/archives/security-announce/2012/May/msg00001.html

support.apple.com/kb/HT4808

support.apple.com/kb/HT4999

support.apple.com/kb/HT5001

support.apple.com/kb/HT5130

support.apple.com/kb/HT5281

7.8 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.029 Low

EPSS

Percentile

90.7%

JSON

Related for CVE-2011-0241

prion1 securityvulns9 nessus4 openvas8