Lucene search

PRIOn knowledge basePRION:CVE-2008-3623

HistoryNov 17, 2008 - 6:18 p.m.

Heap overflow

2008-11-1718:18:00

PRIOn knowledge base

www.prio-n.com

8.3 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.073 Low

EPSS

Percentile

93.9%

JSON

Heap-based buffer overflow in CoreGraphics in Apple Safari before 3.2 on Windows, in iPhone OS 1.0 through 2.2.1, and in iPhone OS for iPod touch 1.1 through 2.2.1 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted image, related to improper handling of color spaces.

CPENameOperatorVersion
safarile3.1.2
safarieq0.8
safarieq0.9
safarieq1.0 beta2
safarieq1.0 beta
safarieq1.0
safarieq1.0.3
safarieq1.1
safarieq1.1.1
safarieq1.2

Name	Operator	Version
safari	le	3.1.2
safari	eq	0.8
safari	eq	0.9
safari	eq	1.0 beta2
safari	eq	1.0 beta
safari	eq	1.0
safari	eq	1.0.3
safari	eq	1.1
safari	eq	1.1.1
safari	eq	1.2

Rows per page:

1-10 of 421

References

lists.apple.com/archives/security-announce//2008//Dec/msg00000.html

lists.apple.com/archives/security-announce//2008/Nov/msg00001.html

lists.apple.com/archives/security-announce/2009/Jun/msg00005.html

secunia.com/advisories/32706

secunia.com/advisories/33179

support.apple.com/kb/HT3298

support.apple.com/kb/HT3338

support.apple.com/kb/HT3639

www.securityfocus.com/bid/32291

www.securitytracker.com/id?1021225

www.us-cert.gov/cas/techalerts/TA08-350A.html

www.vupen.com/english/advisories/2008/3444

www.vupen.com/english/advisories/2009/1621

8.3 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.073 Low

EPSS

Percentile

93.9%

JSON

Related for PRION:CVE-2008-3623