Информационная безопасность
[RU] switch to English


Повреждение памяти в библиотеках Apple QuickDraw (memory corruption)
Опубликовано:24 января 2007 г.
Источник:
SecurityVulns ID:7102
Тип:библиотека
Уровень опасности:
6/10
Описание:Вопреждение памяти при разборе записи ARGB изображения формата PICT.
Затронутые продукты:APPLE : Mac OS X 10.4
CVE:CVE-2007-0588 (The InternalUnpackBits function in Apple QuickDraw, as used by Quicktime 7.1.3 and other applications on Mac OS X 10.4.8 and earlier, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted PICT file that triggers memory corruption in the _GetSrcBits32ARGB function. NOTE: this issue might overlap CVE-2007-0462.)
 CVE-2007-0462 (The _GetSrcBits32ARGB function in Apple QuickDraw, as used by Quicktime 7.1.3 and other applications on Mac OS X 10.4.8 and earlier, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted PICT image with a malformed Alpha RGB (ARGB) record, which triggers memory corruption.)
Оригинальный текстdocumentMOAB, MOAB-23-01-2007: Apple QuickDraw GetSrcBits32ARGB() Memory Corruption Vulnerability (24.01.2007)
Файлы:Exploits Apple QuickDraw GetSrcBits32ARGB() Memory Corruption Vulnerability

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород