Format String Vulnerability in Apple iPhoto
CVE-2008-0043

Currently unrated

Key Information:

Vendor: Apple
Status: Iphoto
Vendor: CVE Published:; 8 February 2008

What is CVE-2008-0043?

A format string vulnerability exists in Apple iPhoto versions before 7.1.2. This flaw allows remote attackers to execute arbitrary code by exploiting photocast subscriptions, potentially compromising the affected system's integrity and revealing sensitive data. Users are advised to update their software to the latest version to mitigate risks associated with this vulnerability.

References

http://www.securitytracker.com/id?1019307

vdb-entryx_refsource_SECTRACK

http://www.securityfocus.com/bid/27636

vdb-entryx_refsource_BID

http://docs.info.apple.com/article.html?artnum=307398

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 8, 2008
Vulnerability Reserved
Jan 3, 2008