PT-2005-3400 · Apple · Appkit

Published

2005-08-19

Updated

2008-09-05

CVE-2005-2501

CVSS v2.0

7.6

High

Vector

AV:N/AC:H/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions AppKit versions 10.3.9 through 10.4.2

Description The issue allows external user-assisted attackers to execute arbitrary code via a crafted Rich Text Format (RTF) file. This is due to a buffer overflow in AppKit.

Recommendations For versions 10.3.9 through 10.4.2, consider avoiding the use of Rich Text Format (RTF) files until a patch is available. As a temporary workaround, restrict the opening of RTF files from untrusted sources to minimize the risk of exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-2501

Affected Products

Appkit

PT-2005-3400 · Apple · Appkit

CVE-2005-2501

Related Identifiers

Affected Products

References · 6