Back to search
CVE-2010-0041
Published: Mar 12, 2010
Modified: Aug 7, 2024
PUBLISHED
Description
ImageIO in Apple Safari before 4.0.5 and iTunes before 9.1 on Windows does not ensure that memory access is associated with initialized memory, which allows remote attackers to obtain potentially sensitive information from process memory via a crafted BMP image.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
APPLE-SA-2010-03-11-1
vendor-advisory
x_refsource_APPLE
38676
vdb-entry
x_refsource_BID
http://support.apple.com/kb/HT4225
x_refsource_CONFIRM
1023706
vdb-entry
x_refsource_SECTRACK
39135
third-party-advisory
x_refsource_SECUNIA
APPLE-SA-2010-03-29-1
vendor-advisory
x_refsource_APPLE
oval:org.mitre.oval:def:6885
vdb-entry
signature
x_refsource_OVAL
http://support.apple.com/kb/HT4105
x_refsource_CONFIRM
http://support.apple.com/kb/HT4070
x_refsource_CONFIRM
http://support.apple.com/kb/HT4077
x_refsource_CONFIRM
APPLE-SA-2010-03-30-2
vendor-advisory
x_refsource_APPLE
APPLE-SA-2010-06-21-1
vendor-advisory
x_refsource_APPLE
38671
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now