Stack-based buffer overflow in PS Normalizer in Apple Mac OS X before 10.6.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PostScript document.
| Date Added | Due Date | Vulnerability Name | Required Action |
|---|---|---|---|
| N/A |
| Type | Version | Base score | Base severity | Vector |
|---|---|---|---|---|
| Primary | 2.0 | 6.8 | MEDIUM | AV:N/AC:M/Au:N/C:P/I:P/A:P |
Per: http://support.apple.com/kb/HT4077 'On Mac OS X v10.6 systems this issue is mitigated by the -fstack-protector compiler flag.'
| Hyperlink | Source | Resource |
|---|---|---|
| http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html | product-security@apple.com | Patch Vendor Advisory |
| http://osvdb.org/63409 | product-security@apple.com | N/A |
| http://support.apple.com/kb/HT4077 | product-security@apple.com | Patch Vendor Advisory |
| http://www.securityfocus.com/bid/39151 | product-security@apple.com | N/A |
| http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html | af854a3a-2127-422b-91ae-364da2661108 | Patch Vendor Advisory |
| http://osvdb.org/63409 | af854a3a-2127-422b-91ae-364da2661108 | N/A |
| http://support.apple.com/kb/HT4077 | af854a3a-2127-422b-91ae-364da2661108 | Patch Vendor Advisory |
| http://www.securityfocus.com/bid/39151 | af854a3a-2127-422b-91ae-364da2661108 | N/A |