CVE-2009-1705
Description
CoreGraphics in Apple Safari before 4.0 on Windows does not properly use arithmetic during automatic hinting of TrueType fonts, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via crafted font data.
Risk Information
Base Score
7.8
MODERATE
Vector
AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
5.154
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple vulnerabilities affected in Apple Safari 3.2.3 | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 3.0.1_windows | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 3.0_windows | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 3.0.2_windows | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 3.2.2_windows | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 3.0.3_windows | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 3.0.4_windows | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 3.1.1_windows | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 3.1.2_windows | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 3.1_windows | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 3.2.1_windows | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 3.2.3 | Windows |
| Multiple Vulnerabilities are affected in Apple Safari 3.2_windows | Windows |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234