Vulnerability Description
Integer overflow in QuickLook, as used in Apple Mac OS X before 10.6.7 and MobileSafari in Apple iOS before 4.2.7 and 4.3.x before 4.3.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a Microsoft Office document with a crafted size field in the OfficeArtMetafileHeader, related to OfficeArtBlip, as demonstrated on the iPhone by Charlie Miller and Dion Blazakis during a Pwn2Own competition at CanSecWest 2011.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | Mac Os X | <= 10.6.6 |
| Apple | Mac Os X Server | <= 10.6.6 |
| Apple | Iphone Os | <= 4.2.5 |
Related Weaknesses (CWE)
References
- http://dvlabs.tippingpoint.com/blog/2011/02/02/pwn2own-2011
- http://lists.apple.com/archives/Security-announce/2011//Oct/msg00005.htmlVendor Advisory
- http://lists.apple.com/archives/security-announce/2011//Apr/msg00000.html
- http://lists.apple.com/archives/security-announce/2011//Apr/msg00001.html
- http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.htmlPatchVendor Advisory
- http://secunia.com/advisories/44154Vendor Advisory
- http://support.apple.com/kb/HT4581PatchVendor Advisory
- http://support.apple.com/kb/HT4607
- http://support.apple.com/kb/HT5003Vendor Advisory
- http://www.zdnet.com/blog/security/charlie-miller-wins-pwn2own-again-with-iphone
- http://www.zerodayinitiative.com/advisories/ZDI-11-109/
- http://dvlabs.tippingpoint.com/blog/2011/02/02/pwn2own-2011
- http://lists.apple.com/archives/Security-announce/2011//Oct/msg00005.htmlVendor Advisory
- http://lists.apple.com/archives/security-announce/2011//Apr/msg00000.html
- http://lists.apple.com/archives/security-announce/2011//Apr/msg00001.html
FAQ
What is CVE-2011-1417?
CVE-2011-1417 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Integer overflow in QuickLook, as used in Apple Mac OS X before 10.6.7 and MobileSafari in Apple iOS before 4.2.7 and 4.3.x before 4.3.2, allows remote attackers to execute arbitrary code or cause a d...
How severe is CVE-2011-1417?
CVE-2011-1417 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2011-1417?
Check the references section above for vendor advisories and patch information. Affected products include: Apple Mac Os X, Apple Mac Os X Server, Apple Iphone Os.