CVE-2010-0519

Name of the Vulnerable Software and Affected Versions Apple Mac OS X versions prior to 10.6.3

Description The issue allows remote attackers to execute arbitrary code or cause a denial of service via a FlashPix image with a malformed SubImage Header Stream containing a NumberOfTiles field with a large value. It can also be triggered by a crafted movie file with FlashPix encoding.

Recommendations For Apple Mac OS X versions prior to 10.6.3, update to version 10.6.3 or later to resolve the issue. As a temporary workaround, consider avoiding the use of FlashPix images or movie files with FlashPix encoding until the update is applied.