Apple iChat AIM URI scheme handling is affected by a classic format string vulnerability, allowing remote users to cause a denial of service condition or arbitrary code execution.Further information:
Recommended
Labels
- 0day (1)
- ape (1)
- appletalk (1)
- bonjour (1)
- colloquy (1)
- denial of service (4)
- diskutil (2)
- dmg (5)
- filesystem corruption (1)
- finder (1)
- flawed design (2)
- format string (8)
- heap buffer overflow (3)
- hfs (1)
- ichat (2)
- ilife (1)
- in the wild (1)
- integer overflow (2)
- iphoto (2)
- javascript (1)
- kernel (1)
- memory corruption (4)
- pdf (1)
- privilege escalation (9)
- quickdraw (1)
- quicktime (3)
- remote (20)
- stack buffer overflow (1)
- ufs (1)
Blog Archive
1 comment:
Thanks for telling me about RCDefaultApp
Not only can I use this for the workaround, but I can get rid of that damn applescript url handler too, which I think is absolutley unnecessary to have.
Post a Comment