cpe:/a:apple:core_image_fun_house:2.0 CVE-2008-2304 2008-07-14T14:41:00.000-04:00 2017-09-28T21:31:06.867-04:00 6.8 NETWORK MEDIUM NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2008-07-15T09:32:00.000-04:00 ALLOWS_OTHER_ACCESS SECTRACK 1020472 BUGTRAQ 20080711 [NETRAGARD SECURITY ADVISORY][Apple Core Image Fun House <= 2.0 OS X -- Arbitrary Code Execution][NETRAGARD-20080711] BID 30189 SECUNIA 31060 SREASON 3988 EXPLOIT-DB 6043 VUPEN ADV-2008-2093 APPLE APPLE-SA-2008-07-11 XF apple-xcode-funhouse-bo(43733) CONFIRM http://support.apple.com/kb/HT2352 Buffer overflow in Apple Core Image Fun House 2.0 and earlier in CoreImage Examples in Xcode tools before 3.1 allows user-assisted attackers to execute arbitrary code or cause a denial of service (application crash) via a .funhouse file with a string XML element that contains many characters.