• 공개일 : 2010-01-21
• 변경일 : 2010-02-05

• 위험도: 9.3
• 액세스 벡터 : NETWORK
• 액세스 복잡성 : 보통
• 인증 : 없음
• 기밀성 영향 : 전체
• 무결성 영향 : 전체
• 가용성 영향 : 전체
• 출처 : http://nvd.nist.gov
• 공개일 : 2010-01-21

Buffer overflow in CoreAudio in Apple Mac OS X 10.5.8 and 10.6.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted MP4 audio file.

• BID, 37868
• XF, macos-coreaudio-mp4-bo(55746)
• VUPEN, ADV-2010-0173
• SECTRACK, 1023472
• CONFIRM, http://support.apple.com/kb/HT4013
• CONFIRM, http://support.apple.com/kb/HT4004
• SECUNIA, 38241
• APPLE, APPLE-SA-2010-01-19-1
• APPLE, APPLE-SA-2010-02-02-1

• apple mac_os_x 10.6.2
• apple mac_os_x_server 10.6.2
• apple mac_os_x_server 10.5.8
• apple mac_os_x 10.5.8