| Vulnerability Name: | CVE-2006-2277 (CCN-30964) | ||||||||
| Assigned: | 2006-04-29 | ||||||||
| Published: | 2006-04-29 | ||||||||
| Updated: | 2018-10-18 | ||||||||
| Summary: | Multiple Apple Mac OS X 10.4 applications might allow context-dependent attackers to cause a denial of service (application crash) via a crafted OpenEXR (.exr) image file, which triggers the crash when opening a folder using Finder, displaying the image in Safari, or using Preview to open the file. | ||||||||
| CVSS v3 Severity: | 3.7 Low (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L)
| ||||||||
| CVSS v2 Severity: | 5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P) 4.0 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P/E:U/RL:U/RC:UR)
2.1 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:H/Au:N/C:N/I:N/A:P/E:U/RL:U/RC:UR)
| ||||||||
| Vulnerability Type: | CWE-Other | ||||||||
| Vulnerability Consequences: | Denial of Service | ||||||||
| References: | Source: CCN Type: BugTraq Mailing List, Sat Apr 29 2006 - 16:42:09 CDT Image file crashes Finder, Safari and other apps Source: MITRE Type: CNA CVE-2006-2277 Source: OSVDB Type: UNKNOWN 27780 Source: CCN Type: OSVDB ID: 27780 Apple Mac OS X Malformed EXR File Handling DoS Source: BUGTRAQ Type: UNKNOWN 20060429 Image file crashes Finder, Safari and other apps Source: BID Type: UNKNOWN 17768 Source: CCN Type: BID-17768 Apple Mac OS X ImageIO OpenEXR Image File Remote Denial Of Service Vulnerability Source: XF Type: UNKNOWN macos-exr-dos(30964) Source: CONFIRM Type: UNKNOWN https://github.com/openexr/openexr/issues/564 | ||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||
| BACK | |||||||||