Description
Integer overflow in ImageIO in Apple Mac OS X 10.4 up to 10.4.5 allows remote attackers to cause a denial of service (crash) via a crafted JPEG image with malformed JPEG metadata, as demonstrated using Safari, aka "Deja-Doom".
Affected products
- Apple / imageio
- Apple / mac_os_x10.4.5 – 10.4.5
- Apple / mac_os_x10.4.4 – 10.4.4
- Apple / mac_os_x10.4.3 – 10.4.3
- Apple / mac_os_x10.4.2 – 10.4.2
- Apple / mac_os_x10.4.1 – 10.4.1
- Apple / mac_os_x10.4 – 10.4
- Apple / mac_os_x_server10.4.5 – 10.4.5
- Apple / mac_os_x_server10.4 – 10.4
- Apple / mac_os_x_server10.4.1 – 10.4.1
- Apple / mac_os_x_server10.4.2 – 10.4.2
- Apple / mac_os_x_server10.4.3 – 10.4.3
- Apple / mac_os_x_server10.4.4 – 10.4.4
- Apple / Safari1.3 – 1.3
- Apple / Safari1.2.3 – 1.2.3
- Apple / Safari1.2.2 – 1.2.2
- Apple / Safari1.2.1 – 1.2.1
- Apple / Safari1.2 – 1.2
- Apple / Safari1.1 – 1.1
- Apple / Safari1.0 – 1.0
- Apple / Safari2.0.1 – 2.0.1
- Apple / Safari2.0.2 – 2.0.2
- Apple / Safari2.0_pre – 2.0_pre
- Apple / Safaribeta2 – beta2
- Apple / Safari2.0 – 2.0
References
- MISChttp://www.securityfocus.com/bid/17951
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2006/1779
- MISChttp://www.osvdb.org/25597
- MISChttp://www.us-cert.gov/cas/techalerts/TA06-132A.html
- MISChttp://www.securityfocus.com/bid/17321
- MAILING_LISThttp://lists.apple.com/archives/security-announce/2006/May/msg00003.html
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/26412
- VENDOR_ADVISORYhttp://secunia.com/advisories/20077
- MISChttp://drunkenblog.com/drunkenblog-archives/000760.html