← back
CVE-2008-2304

CVE-2008-2304

EPSS 5.7%
Buffer overflow in Apple Core Image Fun House 2.0 and earlier in CoreImage Examples in Xcode tools before 3.1 allows user-assisted attackers to execute arbitrary code or cause a denial of service (application crash) via a .funhouse file with a string XML element that contains many characters.
Affected products
n/a · n/a
public PoCs found1
cve_referencewww.exploit-db.com/exploits/6043unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://lists.apple.com/archives/security-announce//2008/Jul/msg00002.htmlhttp://secunia.com/advisories/31060http://securityreason.com/securityalert/3988https://exchange.xforce.ibmcloud.com/vulnerabilities/43733http://support.apple.com/kb/HT2352https://www.exploit-db.com/exploits/6043http://www.securityfocus.com/archive/1/494230/100/0/threadedhttp://www.securityfocus.com/bid/30189http://www.securitytracker.com/id?1020472http://www.vupen.com/english/advisories/2008/2093/references