exploitDog

CVE-2005-0126

Опубликовано: 02 мая 2005

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

ColorSync on Mac OS X 10.3.7 and 10.3.8 allows attackers to execute arbitrary code via malformed ICC color profiles that modify the heap.

Ссылки

http://lists.apple.com/archives/security-announce/2005/Jan/msg00001.html
Patch
Vendor Advisory
http://securitytracker.com/id?1013000
http://www.kb.cert.org/vuls/id/980078
Patch
Third Party Advisory
US Government Resource
http://www.securityfocus.com/bid/12367
https://exchange.xforce.ibmcloud.com/vulnerabilities/19083
http://lists.apple.com/archives/security-announce/2005/Jan/msg00001.html
Patch
Vendor Advisory
http://securitytracker.com/id?1013000
http://www.kb.cert.org/vuls/id/980078
Patch
Third Party Advisory
US Government Resource
http://www.securityfocus.com/bid/12367
https://exchange.xforce.ibmcloud.com/vulnerabilities/19083

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:apple:mac_os_x:10.2.8:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x:10.3.7:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x:10.3.8:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.2.8:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.3.7:*:*:*:*:*:*:*

EPSS

Процентиль: 72%

0.00715

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-rjgm-pr7r-qv2j

github

почти 4 года назад

ColorSync on Mac OS X 10.3.7 and 10.3.8 allows attackers to execute arbitrary code via malformed ICC color profiles that modify the heap.

EPSS

Процентиль: 72%

0.00715

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other