Overview
Apple Mail contains a buffer overflow that may allow a remote attacker to execute arbitrary code on a vulnerable system.
Description
Apple Mail Mac OS X includes the Mail application (Mail.app) for handling electronic mail. |
Impact
By convincing a user to open a specially crafted attachment, a remote, unauthenticated attacker may be able to execute arbitrary code with the privileges of the user running Mail. |
Solution
Install an update |
|
Vendor Information
CVSS Metrics
Group | Score | Vector |
---|---|---|
Base | ||
Temporal | ||
Environmental |
References
Acknowledgements
This vulnerability was reported by Kevin Finisterre.
This document was written by Jeff Gennari.
Other Information
CVE IDs: | CVE-2006-0396 |
Severity Metric: | 6.63 |
Date Public: | 2006-03-13 |
Date First Published: | 2006-03-17 |
Date Last Updated: | 2006-03-29 12:44 UTC |
Document Revision: | 21 |