CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

45 matches found

securityvulns•added 2009/05/20 12:0 a.m.•47 views

ZDI-09-023: Apple OS X ATSServer Compact Font Format Parsing Memory Corruption Vulnerability

ZDI-09-023: Apple OS X Unspecified ATSServer Font Parsing Memory Corruption Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-09-023 May 13, 2009 -- CVE ID: CVE-2009-0154 -- Affected Vendors: Apple -- Affected Products: Apple OS X -- Vulnerability Details: This vulnerability allows...

6.8CVSS0.4AI score0.05533EPSS

Exploits0

Prion•added 2009/05/13 3:30 p.m.•18 views

Heap overflow

Heap-based buffer overflow in Apple Type Services ATS in Apple Mac OS X 10.4.11 and 10.5 before 10.5.7 allows remote attackers to execute arbitrary code via a crafted Compact Font Format CFF font...

6.8CVSS8.2AI score0.05533EPSS

Exploits0References10Affected Software2

NVD•added 2009/05/13 3:30 p.m.•13 views

CVE-2009-0154

Heap-based buffer overflow in Apple Type Services ATS in Apple Mac OS X 10.4.11 and 10.5 before 10.5.7 allows remote attackers to execute arbitrary code via a crafted Compact Font Format CFF font...

6.8CVSS7.6AI score0.05533EPSS

Exploits0References10

Zero Day Initiative•added 2009/05/13 12:0 a.m.•24 views

Apple OS X ATSServer Compact Font Format Parsing Memory Corruption Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple OS X. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw appears to exist in the ATSServer...

6.8CVSS5.7AI score0.05533EPSS

Exploits0References1