PT-2010-1861 · Apple · Coreaudio+1

Tobias Klein

Published

2010-01-20

Updated

2024-10-15

CVE-2010-0036

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Apple Mac OS X versions 10.5.8 through 10.6.2

Description The issue allows remote attackers to execute arbitrary code or cause a denial of service via a crafted MP4 audio file. This is due to a buffer overflow in CoreAudio.

Recommendations For Apple Mac OS X versions 10.5.8 through 10.6.2, update to a version that contains a fix for this issue to prevent remote attackers from executing arbitrary code or causing a denial of service.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2010-0036

Affected Products

Coreaudio

Macos X

PT-2010-1861 · Apple · Coreaudio+1

CVE-2010-0036

Weakness Enumeration

Related Identifiers

Affected Products

References · 11