5 matches found
CVE-2008-0043
CVE-2008-0043 concerns Apple iPhoto prior to 7.1.2. The issue is a format string vulnerability in photocast subscriptions that could allow a remote attacker to execute arbitrary code on the affected host. The vulnerability affects iPhoto’s handling of photocast subscriptions, with the NVD listing...
CVE-2008-0987
Apple Mac OS X 10.5.2 (and Digital Camera RAW Compatibility before Update 2.0 for Aperture 2 and iPhoto 7.1.2) is affected by a stack-based buffer overflow in Image Raw when processing crafted DNG images, allowing remote code execution. The issue is triggered by malformed Adobe Digital Negative f...
CVE-2007-0645
CVE-2007-0645 affects iPhoto 6.0.5 and is a format-string vulnerability in filenames that is triggered during calls to Apple AppKit functions. The vulnerability is described as allowing remote user‑assisted attackers to cause a denial of service (crash). The primary sources (NVD and CVE records) ...
CVE-2008-0830
The CVE-2008-0830 entry covers the DPAP server in Apple iPhoto 4.0.3. According to the description, remote callers can cause a denial-of-service (crash) by sending a malformed dpap: URI. This is described as a vulnerability distinct from CVE-2008-0043. The connected records confirm the affected c...
CVE-2007-0051
The CVE affects Apple iPhoto up to version 6.0.5 (and older than 6.0.6). A format-string vulnerability in the title of an iPhoto photocast RSS feed enables remote code execution. Underlying cause: crafted input with format specifiers is processed by iPhoto, leading to arbitrary code execution. Im...