8.1 High
AI Score
Confidence
High
6.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:P/A:P
0.108 Low
EPSS
Percentile
94.9%
Multiple heap-based buffer overflows in Mac OS X 10.4.6 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) PredictorVSetField function for TIFF or (2) CFAllocatorAllocate function for GIF, as used in applications that use ImageIO or AppKit. NOTE: the BMP vector has been re-assigned to CVE-2006-2238 because it affects a separate product family.
lists.apple.com/archives/security-announce/2006/May/msg00003.html
secunia.com/advisories/19686
secunia.com/advisories/20077
securitytracker.com/id?1016067
www.osvdb.org/24821
www.osvdb.org/24822
www.security-protocols.com/modules.php?name=News&file=article&sid=3233
www.security-protocols.com/sp-x28-advisory.php
www.security-protocols.com/sp-x30-advisory.php
www.securityfocus.com/bid/17634
www.securityfocus.com/bid/17951
www.us-cert.gov/cas/techalerts/TA06-132A.html
www.vupen.com/english/advisories/2006/1452
www.vupen.com/english/advisories/2006/1779
exchange.xforce.ibmcloud.com/vulnerabilities/25949
exchange.xforce.ibmcloud.com/vulnerabilities/25951