cpe:/o:apple:mac_os_x:10.6.0 cpe:/o:apple:mac_os_x:10.6.1 cpe:/o:apple:mac_os_x:10.6.2 cpe:/o:apple:mac_os_x:10.6.3 cpe:/o:apple:mac_os_x:10.6.4 cpe:/o:apple:mac_os_x:10.6.5 cpe:/o:apple:mac_os_x:10.6.6 cpe:/o:apple:mac_os_x:10.6.7 cpe:/o:apple:mac_os_x_server:10.6.0 cpe:/o:apple:mac_os_x_server:10.6.1 cpe:/o:apple:mac_os_x_server:10.6.2 cpe:/o:apple:mac_os_x_server:10.6.3 cpe:/o:apple:mac_os_x_server:10.6.4 cpe:/o:apple:mac_os_x_server:10.6.5 cpe:/o:apple:mac_os_x_server:10.6.6 cpe:/o:apple:mac_os_x_server:10.6.7 CVE-2011-0201 2011-06-24T16:55:02.217-04:00 2011-07-22T22:39:12.693-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2011-06-27T09:25:00.000-04:00 APPLE APPLE-SA-2011-06-23-1 APPLE APPLE-SA-2011-07-20-1 CONFIRM http://support.apple.com/kb/HT4723 CONFIRM http://support.apple.com/kb/HT4808 Off-by-one error in the CoreFoundation framework in Apple Mac OS X before 10.6.8 allows context-dependent attackers to execute arbitrary code or cause a denial of service (application crash) via a CFString object that triggers a buffer overflow.