Information disclosure vulnerability in Apple Safari and iTunes via a crafted BMP image(Mac OS X)ID: oval:org.secpod.oval:def:3343 | Date: (C)2011-12-09 (M)2023-11-18 |
Class: VULNERABILITY | Family: macos |
The host is installed with Apple Safari before 4.0.5 or Apple iTunes before 9.1 and is prone to an information disclosure vulnerability. A flaw is present in the applications, which fail to ensure that memory access is associated with initialized memory. Successful exploitation could allow attackers to disclose sensitive information.
Platform: |
Apple Mac OS X 10.5 |
Apple Mac OS X Server 10.5 |
Apple Mac OS X 10.6 |
Apple Mac OS X Server 10.6 |
Apple Mac OS X 10.7 |
Apple Mac OS X Server 10.7 |
Apple Mac OS X 10.8 |
Apple Mac OS X Server 10.8 |
Apple Mac OS X 10.9 |
Apple Mac OS X Server 10.9 |
Apple Mac OS X 10.10 |
Apple Mac OS X Server 10.10 |
Product: |
Apple Safari |
Apple iTunes |