Apple Safari BMP and GIF Files Remote Denial of Service and Information Disclosure Vulnerability

Apple Safari is prone to a remote vulnerability that may lead to a denial-of-service condition or information disclosure. This issue occurs when the application tries to handle malformed image files.

An attacker can exploit this issue to crash the affected application, denying service to legitimate users. Attackers may also obtain potentially sensitive information that may aid in further attacks.

Very few details are currently available. We will update this BID as more information emerges.

This issue may be related to the one described in BID 27826 (Multiple Web Browser BMP Partial Palette Information Disclosure and Denial Of Service Vulnerability).


Privacy Statement
Copyright 2010, SecurityFocus