Back to search
CVE-2010-0042
Published: Mar 12, 2010
Modified: Aug 7, 2024
PUBLISHED
Description
ImageIO in Apple Safari before 4.0.5 and iTunes before 9.1 on Windows does not ensure that memory access is associated with initialized memory, which allows remote attackers to obtain potentially sensitive information from process memory via a crafted TIFF image.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
APPLE-SA-2010-03-11-1
vendor-advisory
x_refsource_APPLE
http://support.apple.com/kb/HT4225
x_refsource_CONFIRM
1023706
vdb-entry
x_refsource_SECTRACK
39135
third-party-advisory
x_refsource_SECUNIA
38677
vdb-entry
x_refsource_BID
APPLE-SA-2010-03-29-1
vendor-advisory
x_refsource_APPLE
http://support.apple.com/kb/HT4105
x_refsource_CONFIRM
http://support.apple.com/kb/HT4070
x_refsource_CONFIRM
http://support.apple.com/kb/HT4077
x_refsource_CONFIRM
42314
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:7561
vdb-entry
signature
x_refsource_OVAL
http://support.apple.com/kb/HT4456
x_refsource_CONFIRM
APPLE-SA-2010-03-30-2
vendor-advisory
x_refsource_APPLE
APPLE-SA-2010-06-21-1
vendor-advisory
x_refsource_APPLE
38671
vdb-entry
x_refsource_BID
APPLE-SA-2010-11-22-1
vendor-advisory
x_refsource_APPLE
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now