Integer overflow in ColorSync in Apple Mac OS X before 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via an image containing a crafted embedded ColorSync profile that triggers a heap-based buffer overflow.
Vector
NETWORK
Complexity
MEDIUM
Authentication
NONE
Confidentiality
PARTIAL
Integrity
PARTIAL
Availability
PARTIAL
Apache Software Foundation POI 0.5
Apache Software Foundation POI 0.3
Apache Software Foundation POI 1.0.1
Apache Software Foundation POI 0.6
Apache Software Foundation POI 0.7
Apache Software Foundation POI 0.4
Apache Software Foundation POI 1.0.2
Apache Software Foundation POI 1.0.0
Apache Software Foundation Rave 0.20
Apache Software Foundation Rave 0.18
Apache Software Foundation Rave 0.16
Apache Software Foundation Rave 0.19
Apache Software Foundation Rave 0.15
Apache Software Foundation Rave 0.14
Apache Software Foundation Rave 0.17
Apache Software Foundation Rave 0.13