CVE-2008-2332

Name of the Vulnerable Software and Affected Versions: ImageIO in Apple Mac OS X versions 10.4.11 and 10.5 through 10.5.4

Description: The issue allows context-dependent attackers to cause a denial of service, resulting in memory corruption and application crash, or execute arbitrary code via a crafted TIFF image.

Recommendations: For Mac OS X 10.4.11, update to a version that fixes the issue. For Mac OS X versions 10.5 through 10.5.4, update to a version that fixes the issue. As a temporary workaround, consider avoiding the use of crafted TIFF images until a patch is available.