Memory Management Vulnerability in Apple Type Services (ATS) Allows Remote Code Execution or Denial of Service

Memory Management Vulnerability in Apple Type Services (ATS) Allows Remote Code Execution or Denial of Service

CVE-2011-3446 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Apple Type Services (ATS) in Apple Mac OS X before 10.7.3 does not properly manage memory for data-font files, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted font that is accessed by Font Book.

Learn more about our Web Application Penetration Testing UK.