CVE-2008-4236Infinite Loop in Apple MAC OS X

CWE-3993 documents3 sources
Severity
7.1HIGHNVD
EPSS
0.6%
top 30.43%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Apple MAC OS XApple MAC OS X Server
Timeline
PublishedDec 17
Latest updateMay 2

Description

Apple Type Services (ATS) in Apple Mac OS X 10.5 before 10.5.6 allows remote attackers to cause a denial of service (infinite loop) via a crafted embedded font in a PDF file.

CVSS vector

AV:N/AC:M/C:N/I:N/A:CExploitability: 8.6 | Impact: 6.9

Affected Packages2 packages

NVDapple/mac_os_x10.5.5+5
NVDapple/mac_os_x_server10.5.5+5

🔴Vulnerability Details

2
GHSA
GHSA-wp5r-8r3m-3pvc: Apple Type Services (ATS) in Apple Mac OS X 102022-05-02
CVEList
CVE-2008-4236: Apple Type Services (ATS) in Apple Mac OS X 102008-12-17
CVE-2008-4236 — Infinite Loop in Apple MAC OS X | cvebase