Integer overflow in QuickLook, as used in Apple Mac OS X before 10.6.7 and MobileSafari in Apple iOS before 4.2.7 and 4.3.x before 4.3.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a Microsoft Office document with a crafted size field in the OfficeArtMetafileHeader, related to OfficeArtBlip, as demonstrated on the iPhone by Charlie Miller and Dion Blazakis during a Pwn2Own competition at CanSecWest 2011.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2011-03-11T17:00:00
Updated: 2011-03-24T09:00:00
Reserved: 2011-03-11T00:00:00
Link: CVE-2011-1417
JSON object: View
NVD Information
Status : Analyzed
Published: 2011-03-11T17:55:03.760
Modified: 2012-03-30T04:00:00.000
Link: CVE-2011-1417
JSON object: View
Redhat Information
No data.
CWE