Integer underflow in QuickDraw Manager in Apple Mac OS X 10.4.11 and 10.5 prior to 10.5.7, and Apple QuickTime prior to 7.6.2, allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a PICT image with a crafted 0x77 Poly tag and a crafted length field, which triggers a heap-based buffer overflow.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
apple mac os x 10.5 |
||
apple mac os x 10.5.0 |
||
apple mac os x 10.5.6 |
||
apple mac os x 10.5.5 |
||
apple mac os x 10.4.11 |
||
apple mac os x 10.5.3 |
||
apple mac os x 10.5.4 |
||
apple mac os x 10.5.1 |
||
apple mac os x 10.5.2 |
Vulmon