Apple Mac OS X QuickDraw InternalUnpackBits Remote Memory Corruption Vulnerability

Mac OS X QuickDraw is prone to a remote memory-corruption vulnerability because the software fails to properly handle malformed PICT image files.

Successfully exploiting this issue allows remote attackers to corrupt memory and to crash the affected software. Attackers may also be able to execute arbitrary machine code, but this has not been confirmed.

Mac OS X 10.4.8 is vulnerable to this issue; other versions are also likely affected, since the vulnerable component has been included in Apple operating systems since System 6.0.4.


Privacy Statement
Copyright 2010, SecurityFocus