Arbitrary Code Execution and Denial of Service Vulnerability in CoreText

Arbitrary Code Execution and Denial of Service Vulnerability in CoreText

CVE-2012-3716 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

CoreText in Apple Mac OS X 10.7.x before 10.7.5 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds write or read) via a crafted text glyph.

Learn more about our Web Application Penetration Testing UK.