search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

Apple Type Services server font processing buffer overflow

Vulnerability Note VU#835936

Original Release Date: 2006-11-29 | Last Revised: 2006-11-30

Overview

A stack-based buffer overflow in Apple Type Services server may allow attackers to execute arbitrary code.

Description

The Apple Type Services server fails to properly handle malformed font files possibly allowing a stack-based buffer overflow to occur.

Note that according to Apple, font files are processed when opened or previewed in Apple Finder.

Impact

A attacker may be able to execute arbitrary code.

Solution

Apple Updates
Apple advises all users to apply Apple Security Update 2006-007, as it fixes this and other critical security flaws.

Vendor Information

835936
 
Expand all

Apple Computer, Inc. Affected

Updated:  November 29, 2006

Status

Affected

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

Refer to http://docs.info.apple.com/article.html?artnum=304829.

If you have feedback, comments, or additional information about this vulnerability, please send us email.


CVSS Metrics

Group Score Vector
Base
Temporal
Environmental

References

http://docs.info.apple.com/article.html?artnum=304829

Acknowledgements

This vulnerability was reported in Apple Security Update 2006-007.

This document was written by Jeff Gennari based on information from Apple.

Other Information

CVE IDs: CVE-2006-4400
Severity Metric: 2.25
Date Public: 2006-11-28
Date First Published: 2006-11-29
Date Last Updated: 2006-11-30 19:40 UTC
Document Revision: 27

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis