Vulnerability Details CVE-2006-2277
Multiple Apple Mac OS X 10.4 applications might allow context-dependent attackers to cause a denial of service (application crash) via a crafted OpenEXR (.exr) image file, which triggers the crash when opening a folder using Finder, displaying the image in Safari, or using Preview to open the file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.095
EPSS Ranking 92.7%
CVSS Severity
CVSS v2 Score 5.0
References
- http://www.osvdb.org/27780
- http://www.securityfocus.com/archive/1/432587/100/0/threaded
- http://www.securityfocus.com/bid/17768
- https://github.com/openexr/openexr/issues/564
- http://www.osvdb.org/27780
- http://www.securityfocus.com/archive/1/432587/100/0/threaded
- http://www.securityfocus.com/bid/17768
- https://github.com/openexr/openexr/issues/564
Products affected by CVE-2006-2277
-
cpe:2.3:o:apple:mac_os_x:10.4
-
cpe:2.3:o:apple:mac_os_x:10.4.1
-
cpe:2.3:o:apple:mac_os_x:10.4.2
-
cpe:2.3:o:apple:mac_os_x:10.4.3
-
cpe:2.3:o:apple:mac_os_x:10.4.4
-
cpe:2.3:o:apple:mac_os_x:10.4.5
-
cpe:2.3:o:apple:mac_os_x:10.4.6