Информационная безопасность
[RU] switch to English


Многочисленные уязвимости безопасности в Apple iWork
Опубликовано:26 июля 2011 г.
Источник:
SecurityVulns ID:11818
Тип:клиент
Уровень опасности:
6/10
Описание:Повреждения памяти при открытии файлов Word и Excel.
Затронутые продукты:APPLE : iWork 9.0
CVE:CVE-2011-1417 (Integer overflow in QuickLook, as used in Apple Mac OS X before 10.6.7 and MobileSafari in Apple iOS before 4.2.7 and 4.3.x before 4.3.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a Microsoft Office document with a crafted size field in the OfficeArtMetafileHeader, related to OfficeArtBlip, as demonstrated on the iPhone by Charlie Miller and Dion Blazakis during a Pwn2Own competition at CanSecWest 2011.)
 CVE-2010-3786 (QuickLook in Apple Mac OS X 10.6.x before 10.6.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted Excel file.)
 CVE-2010-3785 (Buffer overflow in QuickLook in Apple Mac OS X 10.5.8 and 10.6.x before 10.6.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted Microsoft Office document.)
Оригинальный текстdocumentAPPLE, APPLE-SA-2011-07-20-2 iWork 9.1 Update (26.07.2011)

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород