71 matches found
CVE-2009-2837
CVE-2009-2837 describes a heap-based buffer overflow in the QuickDraw Manager of Apple Mac OS X before 10.6.2, exploitable via a crafted PICT image to execute arbitrary code or cause a denial of service. Affected product: Mac OS X; vulnerable component: QuickDraw Manager handling of PICT images. ...
Mac OS X 10.6 < 10.6.2 Multiple Vulnerabilities
Binary data 800795.prm...
Mac OS X 10.6.x < 10.6.2 Multiple Vulnerabilities
The remote host is running a version of Mac OS X 10.6.x that is prior to 10.6.2. Mac OS X 10.6.2 contains security fixes for the following products : - Adaptive Firewall - Apache - Apache Portable Runtime - Certificate Assistant - CoreMedia - CUPS - Dovecot - fetchmail - file - FTP Server - Help...
Integer overflow
Integer underflow in QuickDraw Manager in Apple Mac OS X 10.4.11 and 10.5 before 10.5.7, and Apple QuickTime before 7.6.2, allows remote attackers to execute arbitrary code or cause a denial of service application crash via a PICT image with a crafted 0x77 Poly tag and a crafted length field, whi...
Memory corruption
QuickDraw Manager in Apple Mac OS X 10.4.11 and 10.5 before 10.5.7 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted PICT image that triggers memory corruption...
CVE-2009-0010
Integer underflow in QuickDraw Manager in Apple Mac OS X 10.4.11 and 10.5 before 10.5.7, and Apple QuickTime before 7.6.2, allows remote attackers to execute arbitrary code or cause a denial of service application crash via a PICT image with a crafted 0x77 Poly tag and a crafted length field, whi...
CVE-2009-0160
QuickDraw Manager in Apple Mac OS X 10.4.11 and 10.5 before 10.5.7 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted PICT image that triggers memory corruption...
CVE-2009-0010
Integer underflow in QuickDraw Manager in Apple Mac OS X 10.4.11 and 10.5 before 10.5.7, and Apple QuickTime before 7.6.2, allows remote attackers to execute arbitrary code or cause a denial of service application crash via a PICT image with a crafted 0x77 Poly tag and a crafted length field, whi...
CVE-2009-0160
QuickDraw Manager in Apple Mac OS X 10.4.11 and 10.5 before 10.5.7 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted PICT image that triggers memory corruption...
CVE-2009-0010
CVE-2009-0010 is a QuickTime/Apple QuickDraw vulnerability affecting Apple QuickTime and Mac OS X. The issue is a heap-based buffer overflow in parsing PICT images, triggered by a crafted 0x77 Poly tag length, which can lead to remote code execution or a crash. Public disclosures cite affected pr...
CVE-2009-0160
CVE-2009-0160 affects Apple QuickDraw Manager in Mac OS X 10.4.11 and 10.5 up to pre-10.5.7. A crafted PICT image can trigger memory corruption, leading to arbitrary code execution or an application crash. The vulnerability is addressed by Apple’s Mac OS X Security Update 2009-002 (HT3549), discu...
Mac OS X 10.5.x < 10.5.7 Multiple Vulnerabilities
The remote host is running a version of Mac OS X 10.5.x that is prior to 10.5.7. Mac OS X 10.5.7 contains security fixes for the following products : - Apache - ATS - BIND - CFNetwork - CoreGraphics - Cscope - CUPS - Disk Images - enscript - Flash Player plug-in - Help Viewer - iChat -...
Mac OS X Multiple Vulnerabilities (Security Update 2009-002)
The remote host is running a version of Mac OS X 10.4 that does not have Security Update 2009-002 applied. This security update contains fixes for the following products : - Apache - ATS - BIND - CoreGraphics - Cscope - CUPS - Disk Images - enscript - Flash Player plug-in - Help Viewer - IPSec -...
Update IPS-1 with a Protection against Apple QuickTime and Apple QuickDraw Vulnerabilities
Several vulnerabilities have been identified within various versions of Apple QuickTime and Apple QuickDraw that, if exploited, would allow a remote attacker to execute arbitrary code on a vulnerable system...
Apple QuickDraw Manager heap buffer overflow vulnerability
Overview Apple QuickDraw contains a heap buffer overflow vulnerability. This vulnerability may allow an attacker to execute arbitrary code or create a denial-of-service condition. Description PICT is a graphics file format that was used by Apple Macintosh systems prior to Mac OS X as their standa...
Mac OS X < 10.4.9 Multiple Vulnerabilities (Security Update 2007-003)
Binary data 3947.prm...
Mac OS X < 10.4.9 Multiple Vulnerabilities (Security Update 2007-003)
The remote host is running a version of Mac OS X 10.4 which is older than version 10.4.9 or a version of Mac OS X 10.3 which does not have Security Update 2007-003 applied. This update contains several security fixes for the following programs : - ColorSync - CoreGraphics - Crash Reporter - CUPS ...
Memory corruption
The InternalUnpackBits function in Apple QuickDraw, as used by Quicktime 7.1.3 and other applications on Mac OS X 10.4.8 and earlier, allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a crafted PICT file that triggers memory corruption ...
CVE-2007-0588
The InternalUnpackBits function in Apple QuickDraw, as used by Quicktime 7.1.3 and other applications on Mac OS X 10.4.8 and earlier, allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a crafted PICT file that triggers memory corruption ...
CVE-2007-0588
Apple QuickDraw in Mac OS X