Henrik Dalgaard

**Name of the Vulnerable Software and Affected Versions** Apple OS X versions 10.3.9 through 10.4.2 **Description** The issue allows remote attackers to execute arbitrary code via a crafted PICT file, potentially affecting applications such as Safari, Mail, and Finder. **Recommendations** For Apple OS X versions 10.3.9 through 10.4.2, consider avoiding the use of crafted PICT files until a patch is available. As a temporary workaround, restrict the handling of PICT files in affected applications to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: AppKit in Mac OS X version 10.3.9 Description: The issue allows attackers to cause a denial of service, resulting in a Cocoa application crash, by utilizing a malformed TIFF image. This image causes the NXSeek to use an incorrect offset, leading to an unhandled exception. Recommendations: For Mac OS X version 10.3.9, consider avoiding the use of malformed TIFF images to prevent the denial of service. As a temporary workaround, restrict the handling of TIFF images in Cocoa applications until a fix is available.