CoreGraphics in Apple Safari before 4.0 on Windows does not properly use arithmetic during automatic hinting of TrueType fonts, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via crafted font data.
Vector
NETWORK
Complexity
MEDIUM
Authentication
NONE
Confidentiality
COMPLETE
Integrity
COMPLETE
Availability
COMPLETE
Apple Safari 3.0.3 - Windows (not an official CPE)
Apple Safari 3.0.4 - Windows (not an official CPE)
Apple Safari 3.0.1 - Windows (not an official CPE)
Apple Safari 3.0.2 - Windows (not an official CPE)
Apple Safari 3.1.2 - Windows (not an official CPE)
Apple Safari 3.1.1 - Windows (not an official CPE)
Apple Safari 3.2 - Windows (not an official CPE)
Apple Safari 3.1 - Windows (not an official CPE)
Apple Safari 3.2.1 - Windows (not an official CPE)
Apple Safari 3.0 - Windows (not an official CPE)
Apple Safari 3.2.2 - Windows (not an official CPE)
Apple Safari 3.2.3 - Windows (not an official CPE)
| Advisory | Patch | Confirmed | Link |
|---|---|---|---|
| ADV-2009-1522 | |||
| 35260 | |||
| http://support.apple.com/kb/HT3613 | |||
| APPLE-SA-2009-06-08-1 | |||
| 35308 | |||
| 35379 | |||
| 54974 |