CVE-2008-0987

Currently unrated

Key Information:

Vendor: Apple
Status: Aperture; Iphoto
Vendor: CVE Published:; 18 March 2008

Summary

Stack-based buffer overflow in Image Raw in Apple Mac OS X 10.5.2, and Digital Camera RAW Compatibility before Update 2.0 for Aperture 2 and iPhoto 7.1.2, allows remote attackers to execute arbitrary code via a crafted Adobe Digital Negative (DNG) image.

References

http://www.securityfocus.com/bid/28304

vdb-entryx_refsource_BID

http://www.vupen.com/english/advisories/2008/0957/references

vdb-entryx_refsource_VUPEN

http://www.us-cert.gov/cas/techalerts/TA08-079A.html

third-party-advisoryx_refsource_CERT

EPSS Score

61% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Mar 18, 2008
Vulnerability Reserved
Feb 26, 2008