CVE-2007-0645

CVE Database · CVE-2007-0645

CVE-2007-0645

· N/AModified

CVSS v3.1

N/A

EPSS

1.83%

Published

Jan 31, 2007

Modified

Apr 22, 2026

Public PoC / Exploit (1)

All weaponized →

Exploit-DBApple Mac OSX 10.4.x - iPhoto 'photo://' URL Handling Format String

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Format string vulnerability in iPhoto 6.0.5 allows remote user-assisted attackers to cause a denial of service (crash) via format string specifiers in a filename, which is not properly handled when calling certain Apple AppKit functions.

Affected Products (1)

apple · iphotovulnerable

References (8)

http://projects.info-pull.com/moab/MOAB-30-01-2007.html

http://www.digitalmunition.com/MOAB-30-01-2007.html

Vendor Advisory

http://www.osvdb.org/32711

http://www.securityfocus.com/bid/22326

http://projects.info-pull.com/moab/MOAB-30-01-2007.html

http://www.digitalmunition.com/MOAB-30-01-2007.html

Vendor Advisory

http://www.osvdb.org/32711

http://www.securityfocus.com/bid/22326

KEV Catalog EPSS Scores Vendors All CVEs