PT-2010-1861 · Apple · Coreaudio+1
Tobias Klein
·
Publicado
2010-01-20
·
Atualizado
2024-10-15
·
CVE-2010-0036
CVSS v2.0
9.3
Alta
| Vetor | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Apple Mac OS X versions 10.5.8 through 10.6.2
Description
The issue allows remote attackers to execute arbitrary code or cause a denial of service via a crafted MP4 audio file. This is due to a buffer overflow in CoreAudio.
Recommendations
For Apple Mac OS X versions 10.5.8 through 10.6.2, update to a version that contains a fix for this issue to prevent remote attackers from executing arbitrary code or causing a denial of service.
Correção
Buffer Overflow
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Coreaudio
Macos X