What is the severity of CVE-2009-1726?

CVE-2009-1726 is considered critical due to its potential for remote code execution and application crashes.

How do I fix CVE-2009-1726?

To fix CVE-2009-1726, upgrade to Mac OS X 10.5.8 or later where the vulnerability has been patched.

Which versions of Mac OS X are affected by CVE-2009-1726?

CVE-2009-1726 affects Apple Mac OS X 10.4.11 and all versions of 10.5 before 10.5.8.

Is the CVE-2009-1726 vulnerability specific to certain applications?

CVE-2009-1726 specifically impacts the ColorSync component in Mac OS X.

Vulnerability/
CVE-2009-1726

critical

9.3

CWE

119

6/8/2009

29/9/2017

CVE-2009-1726: Buffer Overflow

First published: Thu Aug 06 2009(Updated: )

Heap-based buffer overflow in ColorSync in Apple Mac OS X 10.4.11 and 10.5 before 10.5.8 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted image containing an embedded ColorSync profile.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
macOS Yosemite	=10.5.2-2008-002
Apple Mac OS X Server	=10.5.2
macOS Yosemite	=10.5.6
Apple Mac OS X Server	=10.4.11
macOS Yosemite	=10.5.5
Apple Mac OS X Server	=10.5.5
macOS Yosemite	=10.5.1
Apple Mac OS X Server	=10.5.1
Apple Mac OS X Server	=10.5.6
macOS Yosemite	=10.5.3
macOS Yosemite	=10.5.0
Apple Mac OS X Server	=10.5.0
Apple Mac OS X Server	=10.5.3
macOS Yosemite	=10.5
Apple Mac OS X Server	=10.5.4
macOS Yosemite	=10.5.2
Apple Mac OS X Server	=10.5.7
macOS Yosemite	=10.5.6
macOS Yosemite	=10.5.7
macOS Yosemite	=10.4.11
Apple Mac OS X Server	=10.5
macOS Yosemite	=10.5.4

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2009-1726?
CVE-2009-1726 is considered critical due to its potential for remote code execution and application crashes.
How do I fix CVE-2009-1726?
To fix CVE-2009-1726, upgrade to Mac OS X 10.5.8 or later where the vulnerability has been patched.
What kind of attack is possible with CVE-2009-1726?
CVE-2009-1726 allows remote attackers to execute arbitrary code or cause a denial of service through specially crafted images.
Which versions of Mac OS X are affected by CVE-2009-1726?
CVE-2009-1726 affects Apple Mac OS X 10.4.11 and all versions of 10.5 before 10.5.8.
Is the CVE-2009-1726 vulnerability specific to certain applications?
CVE-2009-1726 specifically impacts the ColorSync component in Mac OS X.

agent/type
agent/event
agent/softwarecombine
agent/last-modified-date
agent/first-publish-date
agent/tags
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
agent/description
agent/severity
agent/references
agent/weakness
agent/remedy
agent/author
vendor/apple
canonical/macos yosemite
version/macos yosemite/10.5.2-2008-002
canonical/apple mac os x server
version/apple mac os x server/10.5.2
version/macos yosemite/10.5.6
version/apple mac os x server/10.4.11
version/macos yosemite/10.5.5
version/apple mac os x server/10.5.5
version/macos yosemite/10.5.1
version/apple mac os x server/10.5.1
version/apple mac os x server/10.5.6
version/macos yosemite/10.5.3
version/macos yosemite/10.5.0
version/apple mac os x server/10.5.0
version/apple mac os x server/10.5.3
version/macos yosemite/10.5
version/apple mac os x server/10.5.4
version/macos yosemite/10.5.2
version/apple mac os x server/10.5.7
version/macos yosemite/10.5.7
version/macos yosemite/10.4.11
version/apple mac os x server/10.5
version/macos yosemite/10.5.4

CVE-2009-1726: Buffer Overflow

Remedy

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2009-1726?

How do I fix CVE-2009-1726?

What kind of attack is possible with CVE-2009-1726?

Which versions of Mac OS X are affected by CVE-2009-1726?

Is the CVE-2009-1726 vulnerability specific to certain applications?

Company

Resources

Contact