Arbitrary Code Execution via Malformed ICC Color Profiles in ColorSync on Mac OS X 10.3.7 and 10.3.8

Arbitrary Code Execution via Malformed ICC Color Profiles in ColorSync on Mac OS X 10.3.7 and 10.3.8

CVE-2005-0126 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

ColorSync on Mac OS X 10.3.7 and 10.3.8 allows attackers to execute arbitrary code via malformed ICC color profiles that modify the heap.

Learn more about our Web Application Penetration Testing UK.