3 matches found
n.runs-SA-2009.001 - OS X CFNetwork advisory
n.runs AG http://www.nruns.com/ securityatnruns.com n.runs-SA-2009.001 15-May-2009 Vendor: Apple Inc., http://www.apple.com Affected Products: Mac OS X 10.5.6 Vulnerability: Heap-based buffer overflow in CFNetwork component remote Risk: HIGH Vendor communication: 2009/04/17 Initial notification o...
n.runs-SA-2009.001 - OS X CFNetwork advisory
n.runs AG http://www.nruns.com/ securityatnruns.com n.runs-SA-2009.001 15-May-2009 Vendor: Apple Inc., http://www.apple.com Affected Products: Mac OS X 10.5.6 Vulnerability: Heap-based buffer overflow in CFNetwork component remote Risk: HIGH Vendor communication: 2009/04/17 Initial notification o...
CVE-2009-0157
CVE-2009-0157 is a heap-based buffer overflow in Mac OS X 10.5’s CFNetwork that can be triggered by overly long HTTP headers from a remote web server. The vulnerability allows remote code execution or an application crash when visiting a crafted site, due to a flaw in CFNetwork’s HTTP header hand...