CVE-2008-2321 : Unspecified vulnerability in CoreGraphics in Apple Mac OS X 10.4.11 and 10.5.4 a

Unspecified vulnerability in CoreGraphics in Apple Mac OS X 10.4.11 and 10.5.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via unknown vectors involving "processing of arguments."

Published 2008-08-04 01:41:00

Updated 2025-04-09 00:30:58

Source MITRE

View at NVD, CVE.org

Vulnerability category: Memory CorruptionExecute codeDenial of service

Products affected by CVE-2008-2321

Apple » Coregraphics
cpe:2.3:a:apple:coregraphics:*:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X » Version: 10.4.11
When used together with: Apple » Mac Os X » Version: 10.5.4
When used together with: Apple » Mac Os X Server » Version: 10.4.11
When used together with: Apple » Mac Os X Server » Version: 10.5.4

Exploit prediction scoring system (EPSS) score for CVE-2008-2321

EPSS FAQ

36.61%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 97 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2008-2321

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
9.3	HIGH	AV:N/AC:M/Au:N/C:C/I:C/A:C	8.6	10.0	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

CWE ids for CVE-2008-2321

CWE-399

Assigned by: nvd@nist.gov (Primary)

References for CVE-2008-2321

http://lists.apple.com/archives/security-announce/2009/jun/msg00002.html

CVEs referencing this url
http://secunia.com/advisories/31326

About Secunia Research | Flexera
Vendor Advisory

CVEs referencing this url
http://www.securitytracker.com/id?1020603
http://support.apple.com/kb/HT3613

About the security content of Safari 4.0 - Apple Support

CVEs referencing this url
http://secunia.com/advisories/32756

About Secunia Research | Flexera

CVEs referencing this url
http://www.securityfocus.com/bid/30488

Patch
http://www.vupen.com/english/advisories/2008/3232

Site en construction

CVEs referencing this url
http://www.vupen.com/english/advisories/2008/2268

Webmail: access your OVH emails on ovhcloud.com | OVHcloud

CVEs referencing this url
http://lists.apple.com/archives/security-announce//2008/Jul/msg00003.html

Patch

CVEs referencing this url
http://secunia.com/advisories/35379

About Secunia Research | Flexera

CVEs referencing this url
http://lists.apple.com/archives/security-announce/2008/Nov/msg00002.html

Apple - Lists.apple.com

CVEs referencing this url
https://exchange.xforce.ibmcloud.com/vulnerabilities/44127
http://www.vupen.com/english/advisories/2009/1522

Webmail: access your OVH emails on ovhcloud.com | OVHcloud

CVEs referencing this url
http://www.securityfocus.com/bid/30483

Patch

CVEs referencing this url
http://support.apple.com/kb/HT3318

About the security content of iOS 2.2 and iOS for iPod touch 2.2 - Apple Support

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2008-2321

Products affected by CVE-2008-2321

Exploit prediction scoring system (EPSS) score for CVE-2008-2321

CVSS scores for CVE-2008-2321

CWE ids for CVE-2008-2321

References for CVE-2008-2321