Apple Mac OS X ATSServer CFF 'CharStrings' Index Sign Mismatch Remote Code Execution Vulnerability

Bugtraq ID: 44729
Class: Design Error
CVE: CVE-2010-4010
Remote: No
Local: Yes
Published: Nov 08 2010 12:00AM
Updated: Nov 19 2010 08:06PM
Credit: Anibal Sacco and Matias Eissler of Core Security Technologies.
Vulnerable: Apple Mac OS X Server 10.5.8
Apple Mac OS X Server 10.5.7
Apple Mac OS X Server 10.5.6
Apple Mac OS X Server 10.5.5
Apple Mac OS X Server 10.5.4
Apple Mac OS X Server 10.5.3
Apple Mac OS X Server 10.5.2
Apple Mac OS X Server 10.5.1
Apple Mac OS X Server 10.5
Apple Mac OS X Server 10.5
Apple Mac OS X 10.5.8
Apple Mac OS X 10.5.7
Apple Mac OS X 10.5.6
Apple Mac OS X 10.5.5
Apple Mac OS X 10.5.4
Apple Mac OS X 10.5.3
Apple Mac OS X 10.5.2
Apple Mac OS X 10.5.1
Apple Mac OS X 10.5
Apple Mac OS X 10.5
Not Vulnerable: Apple Mac OS X Server 10.6
Apple Mac OS X 10.6


 

Privacy Statement
Copyright 2010, SecurityFocus