Tom Ferris

**Name of the Vulnerable Software and Affected Versions** Apple iOS versions prior to 4.1 **Description** A buffer overflow issue in ImageIO allows remote attackers to execute arbitrary code or cause a denial of service via a crafted GIF file. **Recommendations** For Apple iOS versions prior to 4.1, update to version 4.1 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Apple QuickTime versions prior to 7.6.4 **Description** The issue allows remote attackers to execute arbitrary code or cause a denial of service, resulting in memory corruption and application crash, via a crafted H.264 movie file. **Recommendations** For versions prior to 7.6.4, update to version 7.6.4 or later to resolve the issue.

Name of the Vulnerable Software and Affected Versions: Apple QuickTime versions prior to 7.3.1 Description: The issue is related to multiple unspecified vulnerabilities in the Flash media handler of Apple QuickTime. These vulnerabilities can be exploited by remote attackers via a crafted QuickTime movie, potentially allowing the execution of arbitrary code or having other unspecified impacts. Recommendations: For versions prior to 7.3.1, update to version 7.3.1 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Apple Quicktime versions 7.1.3 and earlier **Description** The issue allows remote attackers to cause a denial of service, potentially leading to application crashes, and possibly execute arbitrary code via a crafted PICT file. This is due to memory corruption in the ` GetSrcBits32ARGB` function triggered by the `InternalUnpackBits` function in Apple QuickDraw. **Recommendations** For Apple Quicktime versions 7.1.3 and earlier, consider updating to a newer version to mitigate the risk of exploitation. As a temporary workaround, avoid using the `InternalUnpackBits` function until a patch is available. Restrict access to crafted PICT files to minimize the risk of triggering memory corruption in the ` GetSrcBits32ARGB` function.

**Name of the Vulnerable Software and Affected Versions** Apple Mac OS X versions 10.3.x through 10.3.9 Apple Mac OS X versions 10.4 through 10.4.8 **Description** The issue allows remote attackers to execute arbitrary code via a crafted HTML file, which accesses previously deallocated objects. **Recommendations** For Apple Mac OS X versions 10.3.x through 10.3.9, update to a version outside of this range to mitigate the risk. For Apple Mac OS X versions 10.4 through 10.4.8, update to a version outside of this range to mitigate the risk.

**Name of the Vulnerable Software and Affected Versions** eBay Skype for Mac versions 1.5.*.79 and earlier **Description** The issue is related to a format string vulnerability in the NSRunAlertPanel function. This vulnerability allows remote attackers to cause a denial of service, potentially leading to an application crash, and may also enable the execution of arbitrary code. The attack vector involves a malformed Skype URL. **Recommendations** For versions 1.5.*.79 and earlier, consider disabling the NSRunAlertPanel function as a temporary workaround until a patch is available. Restrict access to malformed Skype URLs to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Mac OS X version 10.4.7 **Description** The issue is related to an unspecified vulnerability in ImageIO, which can be triggered by a crafted GIF image. This can cause a denial of service, resulting in a system crash, and potentially allow the execution of arbitrary code due to a memory allocation failure that is not properly handled. **Recommendations** For Mac OS X version 10.4.7, update to a newer version to mitigate the risk.

**Name of the Vulnerable Software and Affected Versions** Apple Mac OS X version 10.4.7 **Description** The issue is related to an integer overflow in ImageIO, which can be triggered by a malformed GIF image. This could allow user-assisted attackers to cause a denial of service, potentially leading to a crash, and may also enable the execution of arbitrary code. **Recommendations** For Apple Mac OS X version 10.4.7, update to a newer version that contains a fix for this issue to prevent potential exploitation.

**Name of the Vulnerable Software and Affected Versions** Bom for Apple Mac OS X versions 10.3.9 through 10.4.7 **Description** The issue is related to the compression state handling in Bom, allowing user-assisted attackers to cause a denial of service, potentially leading to application crashes, and possibly execute arbitrary code via a crafted Zip archive. **Recommendations** For versions 10.3.9 through 10.4.7, consider avoiding the use of crafted Zip archives to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions 1.0.7 and earlier **Description** The issue allows remote attackers to cause a denial of service, resulting in a client crash. This is achieved through an IFRAME element with a large value of the `WIDTH` attribute. The large value triggers a problem related to the representation of floating-point numbers, leading to an infinite loop of widget resizes and a corresponding large number of function calls on the stack. **Recommendations** For Mozilla Firefox versions 1.0.7 and earlier, consider avoiding the use of large values for the `WIDTH` attribute in IFRAME elements until a fix is available. As a temporary workaround, restricting the use of IFRAME elements with large `WIDTH` attribute values may help minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions 1.0.6 and earlier Netscape versions 8.0.3.3 and 7.2 **Description** A buffer overflow issue exists in the International Domain Name (IDN) support, allowing remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a hostname with all "soft" hyphens (character 0xAD). This is due to improper handling by the NormalizeIDN call in `nsStandardURL::BuildNormalizedSpec()`. **Recommendations** For Mozilla Firefox versions 1.0.6 and earlier, update to a version later than 1.0.6 to resolve the issue. For Netscape versions 8.0.3.3 and 7.2, update to a version later than 8.0.3.3 and 7.2 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Microsoft Windows versions 2000 Server, XP, and Server 2003 **Description** The issue allows remote attackers to cause a denial of service, resulting in a system crash, by sending crafted Remote Desktop Protocol (RDP) requests to the Microsoft Windows kernel. **Recommendations** For Microsoft Windows 2000 Server, XP, and Server 2003, consider restricting access to RDP to minimize the risk of exploitation until a fix is available.