Lucene search
K
AppleIphoto

5 matches found

CVE
CVE
added 2008/02/08 1:0 a.m.863 views

CVE-2008-0043

CVE-2008-0043 concerns Apple iPhoto prior to 7.1.2. The issue is a format string vulnerability in photocast subscriptions that could allow a remote attacker to execute arbitrary code on the affected host. The vulnerability affects iPhoto’s handling of photocast subscriptions, with the NVD listing...

9.3CVSS7.3AI score0.03909EPSS
CVE
CVE
added 2008/03/18 11:0 p.m.58 views

CVE-2008-0987

Apple Mac OS X 10.5.2 (and Digital Camera RAW Compatibility before Update 2.0 for Aperture 2 and iPhoto 7.1.2) is affected by a stack-based buffer overflow in Image Raw when processing crafted DNG images, allowing remote code execution. The issue is triggered by malformed Adobe Digital Negative f...

6.8CVSS9.3AI score0.04789EPSS
CVE
CVE
added 2007/02/01 12:0 a.m.53 views

CVE-2007-0645

CVE-2007-0645 affects iPhoto 6.0.5 and is a format-string vulnerability in filenames that is triggered during calls to Apple AppKit functions. The vulnerability is described as allowing remote user‑assisted attackers to cause a denial of service (crash). The primary sources (NVD and CVE records) ...

6.8CVSS6.2AI score0.01829EPSS
CVE
CVE
added 2008/02/19 10:0 p.m.52 views

CVE-2008-0830

The CVE-2008-0830 entry covers the DPAP server in Apple iPhoto 4.0.3. According to the description, remote callers can cause a denial-of-service (crash) by sending a malformed dpap: URI. This is described as a vulnerability distinct from CVE-2008-0043. The connected records confirm the affected c...

7.5CVSS6.7AI score0.02243EPSS
CVE
CVE
added 2007/01/04 6:0 p.m.50 views

CVE-2007-0051

The CVE affects Apple iPhoto up to version 6.0.5 (and older than 6.0.6). A format-string vulnerability in the title of an iPhoto photocast RSS feed enables remote code execution. Underlying cause: crafted input with format specifiers is processed by iPhoto, leading to arbitrary code execution. Im...

6.8CVSS7.2AI score0.09037EPSS