Memory Initialization Flaw in Apple Mac OS X Affects CoreMedia Playback
CVE-2013-1024

Currently unrated

Key Information:

Vendor: Apple
Status: Mac Os X; Mac Os X Server
Vendor: CVE Published:; 5 June 2013

What is CVE-2013-1024?

A memory initialization flaw exists in CoreMedia Playback on Apple Mac OS X prior to version 10.8.4. This issue allows remote attackers to exploit specially crafted movie files, potentially executing arbitrary code or causing a denial of service by crashing the application. Proper memory handling is crucial to safeguarding users from these types of attacks.

References

http://lists.apple.com/archives/security-announce/2013/Oc...

vendor-advisoryx_refsource_APPLE

http://support.apple.com/kb/HT6001

x_refsource_CONFIRM

http://support.apple.com/kb/HT5784

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 5, 2013
Vulnerability Reserved
Jan 10, 2013