CVE-2010-0056

Name of the Vulnerable Software and Affected Versions AppKit in Apple Mac OS X version 10.5.8

Description The issue allows user-assisted remote attackers to execute arbitrary code or cause a denial of service, resulting in an application crash, via a crafted document. This is due to a buffer overflow in the Cocoa spell checking component of AppKit.

Recommendations For AppKit in Apple Mac OS X version 10.5.8, consider avoiding the use of crafted documents until a fix is available. As a temporary workaround, restrict the opening of documents from untrusted sources to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.