CVE-2009-1717

Name of the Vulnerable Software and Affected Versions: Apple Mac OS X versions prior to 10.5.7

Description: The issue is related to an integer overflow in Terminal, allowing remote attackers to execute arbitrary code or cause a denial of service due to memory corruption and application crash. This is achieved by sending a crafted size value in a CSI[4 xterm resize escape sequence, which triggers a heap-based buffer overflow.

Recommendations: For Apple Mac OS X versions prior to 10.5.7, update to version 10.5.7 or later to resolve the issue.