CVE-2008-4211

Published Oct 10, 2008

Last updated 3 years ago

Overview

Description: Integer signedness error in (1) QuickLook in Apple Mac OS X 10.5.5 and (2) Office Viewer in Apple iPhone OS 1.0 through 2.1 and iPhone OS for iPod touch 1.1 through 2.1 allows remote attackers to cause a denial of service (application termination) and execute arbitrary code via a crafted Microsoft Excel file that triggers an out-of-bounds memory access, related to "handling of columns."
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 10
Impact score: 10
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: CWE-189

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:apple:mac_os_x:10.5.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AE1EBF04-C440-4A6B-93F2-DC3A812728C2"
          },
          {
            "criteria": "cpe:2.3:o:apple:mac_os_x_server:10.5.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C147E866-B80F-4FFA-BBE8-19E84A46DB1C"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:apple:iphone_os:1.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A7B6D035-38A9-4C0B-9A9D-CAE3BF1CA56D"
          },
          {
            "criteria": "cpe:2.3:o:apple:iphone_os:1.0.1:-:iphone:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B669868B-F358-4D5B-9D64-4A462F261553"
          },
          {
            "criteria": "cpe:2.3:o:apple:iphone_os:1.0.2:-:iphone:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A14B31DE-AA3D-4FA2-A4F4-0A6A51AFA7FE"
          },
          {
            "criteria": "cpe:2.3:o:apple:iphone_os:1.1.0:-:iphone:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4261E5C1-DC93-437E-B84F-A30380AFDC40"
          },
          {
            "criteria": "cpe:2.3:o:apple:iphone_os:1.1.1:-:iphone:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DF292FED-19A4-4031-9B1F-151C0146F3B6"
          },
          {
            "criteria": "cpe:2.3:o:apple:iphone_os:1.1.2:-:iphone:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5183082C-556F-479F-9FC1-42B59BBB840B"
          },
          {
            "criteria": "cpe:2.3:o:apple:iphone_os:1.1.3:-:iphone:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2FFCFEA4-C5E2-4C46-B8C3-ADCDBA4B85EF"
          },
          {
            "criteria": "cpe:2.3:o:apple:iphone_os:1.1.4:-:iphone:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4FA51920-223B-4DF4-802C-188F5A8B0563"
          },
          {
            "criteria": "cpe:2.3:o:apple:iphone_os:1.1.5:-:iphone:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2C63C36E-1997-4F44-80AD-E665CE46A278"
          },
          {
            "criteria": "cpe:2.3:o:apple:iphone_os:2.0.0:-:iphone:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "02BFDD6F-B9C3-42BB-A84A-828193FAA137"
          },
          {
            "criteria": "cpe:2.3:o:apple:iphone_os:2.0.1:-:iphone:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CFD4325B-A86A-4C1B-930F-56C17FB6281D"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:apple:iphone_os:1.1.0:-:ipodtouch:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "079BB54C-25FD-4B26-B171-368911960F76"
          },
          {
            "criteria": "cpe:2.3:o:apple:iphone_os:1.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "27319629-171F-42AA-A95F-2D71F78097D0"
          },
          {
            "criteria": "cpe:2.3:o:apple:iphone_os:1.1.2:-:ipodtouch:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AAC3FBF0-F128-412D-9FD5-13BB2EB92DD7"
          },
          {
            "criteria": "cpe:2.3:o:apple:iphone_os:1.1.3:-:ipodtouch:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7E7AA027-8CF9-49BD-A000-82880E41D622"
          },
          {
            "criteria": "cpe:2.3:o:apple:iphone_os:1.1.4:-:ipodtouch:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4385635D-46F2-4642-9C78-1346DC120492"
          },
          {
            "criteria": "cpe:2.3:o:apple:iphone_os:1.1.5:-:ipodtouch:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "20DAE911-C037-4F10-82A3-EF42D5FB71D8"
          },
          {
            "criteria": "cpe:2.3:o:apple:iphone_os:2.0.0:-:ipodtouch:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0A66D6DC-9A48-4BD6-9E01-0D9FF388457C"
          },
          {
            "criteria": "cpe:2.3:o:apple:iphone_os:2.0.1:-:ipodtouch:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C59B8C50-BF5D-4E9A-8E5B-99B34E974B5A"
          },
          {
            "criteria": "cpe:2.3:o:apple:iphone_os:2.0.2:-:ipodtouch:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D4CE4199-BBF5-4F42-8BBC-BD946079C912"
          },
          {
            "criteria": "cpe:2.3:o:apple:iphone_os:2.1:-:ipodtouch:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "34346F55-4972-427B-8F96-780FA91DB95D"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References