Apple : Security Vulnerabilities, CVEs, Published In June 2008 (Overflow)
Stack-based buffer overflow in Indeo.qtx in Apple QuickTime before 7.5 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via crafted Indeo video codec content in a movie file.
Max CVSS
6.8
EPSS Score
33.88%
Published
2008-06-10
Updated
2018-10-11
Heap-based buffer overflow in Apple QuickTime before 7.5 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PICT image, a different vulnerability than CVE-2008-1581.
Max CVSS
6.8
EPSS Score
2.58%
Published
2008-06-10
Updated
2017-08-08
Heap-based buffer overflow in Apple QuickTime before 7.5 on Windows allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted packed scanlines in PixData structures in a PICT image.
Max CVSS
6.8
EPSS Score
3.61%
Published
2008-06-10
Updated
2018-10-11
Integer overflow in ImageIO in Apple Mac OS X before 10.5.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted JPEG2000 image that triggers a heap-based buffer overflow.
Max CVSS
9.3
EPSS Score
2.90%
Published
2008-06-02
Updated
2017-08-08
The BMP and GIF image decoding engine in ImageIO in Apple Mac OS X before 10.5.3 allows remote attackers to obtain sensitive information (memory contents) via a crafted (1) BMP or (2) GIF image, which causes an out-of-bounds read.
Max CVSS
7.1
EPSS Score
0.72%
Published
2008-06-02
Updated
2017-08-08
Integer underflow in Help Viewer in Apple Mac OS X before 10.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted help:topic URL that triggers a buffer overflow.
Max CVSS
9.3
EPSS Score
4.92%
Published
2008-06-02
Updated
2017-08-08
CoreGraphics in Apple Mac OS X before 10.5.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PDF document, related to an uninitialized variable.
Max CVSS
9.3
EPSS Score
3.02%
Published
2008-06-02
Updated
2017-08-08
Integer overflow in the CFDataReplaceBytes function in the CFData API in CoreFoundation in Apple Mac OS X before 10.5.3 allows context-dependent attackers to execute arbitrary code or cause a denial of service (crash) via an invalid length argument, which triggers a heap-based buffer overflow.
Max CVSS
10.0
EPSS Score
0.34%
Published
2008-06-02
Updated
2017-08-08
8 vulnerabilities found