PT-2011-2174 · Apple · Imageio+1
Dominic Chell
·
Published
2011-03-23
·
Updated
2011-03-23
·
CVE-2011-0194
CVSS v2.0
6.8
Medium
| Vector | AV:N/AC:M/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Apple Mac OS X versions prior to 10.6.7
Description
The issue is related to an integer overflow in ImageIO, which can be triggered by a crafted TIFF image with JPEG encoding. This can allow remote attackers to execute arbitrary code or cause a denial of service, resulting in an application crash.
Recommendations
For Apple Mac OS X versions prior to 10.6.7, update to version 10.6.7 or later to resolve the issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Imageio
Macos X