8 matches found
CVE-2006-1552
CVE-2006-1552 describes an integer overflow in ImageIO used by Apple Mac OS X 10.4 up to 10.4.5. A crafted JPEG image with malformed metadata can remotely cause a denial of service (crash) via Safari (aka Deja-Doom). The NVD entry lists a base score of 5.0 (Medium) with network attack vector, low...
CVE-2011-0204
CVE-2011-0204: Heap-based buffer overflow in ImageIO TIFF handling on Apple Mac OS X before 10.6.8. Remote attackers could cause code execution or a crash via a crafted TIFF image. Remediation: apply the Mac OS X 10.6.8 security update (HT4808/HT4723/HT4981 as referenced by Apple) or newer OS X s...
CVE-2011-0241
CVE-2011-0241: Heap-based buffer overflow in ImageIO used by Apple Safari’s TIFF handling (CCITT Group 4) could allow remote code execution or a denial of service. Affected vendor/product: Apple Safari on macOS with ImageIO before Safari 5.0.6. The underlying issue is a buffer overflow when proce...
CVE-2011-0215
CVE-2011-0215 affects ImageIO in Apple Safari on Windows, where a re-entrancy issue in TIFF handling could be exploited to execute arbitrary code or cause an application crash. The vulnerability stems from ImageIO’s TIFF processing and was publicly described in the Apple advisory chain associated...
CVE-2011-0181
CVE-2011-0181 describes an integer overflow in Apple’s ImageIO on Mac OS X before 10.6.7. A crafted XBM image can allow remote attackers to execute arbitrary code or cause a denial of service (application crash). Affected: Mac OS X 10.6.x prior to 10.6.7; component: ImageIO (and related image han...
CVE-2007-0733
CVE-2007-0733 affects Apple Mac OS X ImageIO in Mac OS X 10.3.9 and 10.4–10.4.8. A crafted RAW image can trigger memory corruption, enabling remote user-assisted denial of service and potentially arbitrary code execution. Apple addressed this with Security Update 2007-003 for 10.3 and Mac OS X 10...
CVE-2011-0194
CVE-2011-0194 affects Apple Mac OS X 10.6 prior to 10.6.7 due to an integer overflow in ImageIO’s handling of JPEG-encoded TIFFs. This can allow remote code execution or a denial of service via a crafted image. Red Hat and other sources reference the same issue; OpenVAS/NESSUS entries corroborate...
CVE-2011-0205
CVE-2011-0205 : Heap-based buffer overflow in Apple ImageIO on Mac OS X prior to 10.6.8 can be triggered by a crafted JPEG2000 image, potentially allowing remote code execution or a denial of service (application crash). The available data specifies the vulnerable component (ImageIO) and the impa...