What is the severity of CVE-2010-0505?

CVE-2010-0505 has a high severity rating due to its potential to allow remote code execution and application crashes.

How do I fix CVE-2010-0505?

To fix CVE-2010-0505, users should upgrade to Mac OS X versions 10.6.3 or later, where the vulnerability has been addressed.

What systems are affected by CVE-2010-0505?

CVE-2010-0505 affects various versions of Apple Mac OS X before 10.6.3, including several releases of Mac OS X and Mac OS X Server.

What type of attack does CVE-2010-0505 enable?

CVE-2010-0505 enables remote attackers to execute arbitrary code through crafted JP2 (JPEG2000) images.

Can CVE-2010-0505 cause a denial of service?

Yes, CVE-2010-0505 can lead to a denial of service by causing application crashes when processing manipulated images.

Vulnerability/
CVE-2010-0505

medium

6.8

CWE

119

30/3/2010

7/8/2024

CVE-2010-0505: Buffer Overflow

First published: Tue Mar 30 2010(Updated: )

Heap-based buffer overflow in ImageIO in Apple Mac OS X before 10.6.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted JP2 (JPEG2000) image, related to incorrect calculation and the CGImageReadGetBytesAtOffset function.

Credit: product-security@apple.com

Affected Software	Affected Version	How to fix
macOS Yosemite	=10.5.8
Apple Mac OS X Server	=10.5.2
macOS Yosemite	=10.5.6
Apple Mac OS X Server	=10.5.8
macOS Yosemite	=10.5.5
Apple Mac OS X Server	=10.5.5
macOS Yosemite	=10.5.1
Apple Mac OS X Server	=10.5.1
Apple Mac OS X Server	=10.5.6
macOS Yosemite	=10.5.3
macOS Yosemite	=10.5.0
Apple Mac OS X Server	=10.5.0
Apple Mac OS X Server	=10.5.3
macOS Yosemite	=10.5
Apple Mac OS X Server	=10.5.4
macOS Yosemite	=10.5.2
Apple Mac OS X Server	=10.5.7
Apple Mac OS X Server	=10.6.1
macOS Yosemite	<=10.6.2
macOS Yosemite	=10.6.1
Apple Mac OS X Server	=10.6.0
macOS Yosemite	=10.6.0
macOS Yosemite	=10.5.7
Apple Mac OS X Server	=10.5
Apple Mac OS X Server	<=10.6.2
macOS Yosemite	=10.5.4

Remedy

http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html

Remedy

http://support.apple.com/kb/HT4077

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2010-0505?
CVE-2010-0505 has a high severity rating due to its potential to allow remote code execution and application crashes.
How do I fix CVE-2010-0505?
To fix CVE-2010-0505, users should upgrade to Mac OS X versions 10.6.3 or later, where the vulnerability has been addressed.
What systems are affected by CVE-2010-0505?
CVE-2010-0505 affects various versions of Apple Mac OS X before 10.6.3, including several releases of Mac OS X and Mac OS X Server.
What type of attack does CVE-2010-0505 enable?
CVE-2010-0505 enables remote attackers to execute arbitrary code through crafted JP2 (JPEG2000) images.
Can CVE-2010-0505 cause a denial of service?
Yes, CVE-2010-0505 can lead to a denial of service by causing application crashes when processing manipulated images.

agent/references
agent/type
agent/remedy
collector/mitre-cve
source/MITRE
agent/severity
agent/author
agent/last-modified-date
agent/description
agent/first-publish-date
agent/event
agent/source
agent/tags
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
agent/weakness
agent/softwarecombine
vendor/apple
canonical/macos yosemite
version/macos yosemite/10.5.8
canonical/apple mac os x server
version/apple mac os x server/10.5.2
version/macos yosemite/10.5.6
version/apple mac os x server/10.5.8
version/macos yosemite/10.5.5
version/apple mac os x server/10.5.5
version/macos yosemite/10.5.1
version/apple mac os x server/10.5.1
version/apple mac os x server/10.5.6
version/macos yosemite/10.5.3
version/macos yosemite/10.5.0
version/apple mac os x server/10.5.0
version/apple mac os x server/10.5.3
version/macos yosemite/10.5
version/apple mac os x server/10.5.4
version/macos yosemite/10.5.2
version/apple mac os x server/10.5.7
version/apple mac os x server/10.6.1
version/macos yosemite/10.6.2
version/macos yosemite/10.6.1
version/apple mac os x server/10.6.0
version/macos yosemite/10.6.0
version/macos yosemite/10.5.7
version/apple mac os x server/10.5
version/apple mac os x server/10.6.2
version/macos yosemite/10.5.4

Frequently Asked Questions

What is the severity of CVE-2010-0505?
CVE-2010-0505 has a high severity rating due to its potential to allow remote code execution and application crashes.
How do I fix CVE-2010-0505?
To fix CVE-2010-0505, users should upgrade to Mac OS X versions 10.6.3 or later, where the vulnerability has been addressed.
What systems are affected by CVE-2010-0505?
CVE-2010-0505 affects various versions of Apple Mac OS X before 10.6.3, including several releases of Mac OS X and Mac OS X Server.
What type of attack does CVE-2010-0505 enable?
CVE-2010-0505 enables remote attackers to execute arbitrary code through crafted JP2 (JPEG2000) images.
Can CVE-2010-0505 cause a denial of service?
Yes, CVE-2010-0505 can lead to a denial of service by causing application crashes when processing manipulated images.

CVE-2010-0505: Buffer Overflow

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2010-0505?

How do I fix CVE-2010-0505?

What systems are affected by CVE-2010-0505?

What type of attack does CVE-2010-0505 enable?

Can CVE-2010-0505 cause a denial of service?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2010-0505?

How do I fix CVE-2010-0505?

What systems are affected by CVE-2010-0505?

What type of attack does CVE-2010-0505 enable?

Can CVE-2010-0505 cause a denial of service?