The Java interface to CoreAudio on Apple Mac OS X 10.3.9 and 10.4.10 does not restrict object instantiation and manipulation to valid heap addresses, which allows remote malicious users to execute arbitrary code via a crafted applet.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple ichat |