CVE-2009-0020Out-of-bounds Write in Apple MAC OS X

CWE-3993 documents3 sources
Severity
7.8HIGHNVD
EPSS
2.2%
top 15.42%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Apple MAC OS XApple MAC OS X Server
Timeline
PublishedFeb 13
Latest updateMay 2

Description

Unspecified vulnerability in CarbonCore in Apple Mac OS X 10.4.11 and 10.5.6 allows remote attackers to cause a denial of service (application termination) and execute arbitrary code via a crafted resource fork that triggers memory corruption.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages2 packages

NVDapple/mac_os_x10.4.11, 10.5.6+1
NVDapple/mac_os_x_server10.4.11, 10.5.6+1

Patches

Patch: lists.apple.comPatch: lists.apple.com

🔴Vulnerability Details

2
GHSA
GHSA-49rj-992g-44xv: Unspecified vulnerability in CarbonCore in Apple Mac OS X 102022-05-02
CVEList
CVE-2009-0020: Unspecified vulnerability in CarbonCore in Apple Mac OS X 102009-02-13
CVE-2009-0020 — Out-of-bounds Write in Apple MAC OS X | cvebase