CVE-2008-2322

CVE Database · CVE-2008-2322

CVE-2008-2322

· N/AModified

CVSS v3.1

N/A

EPSS

5.72%

Published

Aug 3, 2008

Modified

Apr 22, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Integer overflow in CoreGraphics in Apple Mac OS X 10.4.11, 10.5.2, and 10.5.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a PDF file with a long Type 1 font, which triggers a heap-based buffer overflow.

Weaknesses (CWE)

CWE-189

Affected Products (5)

apple · mac_os_x

apple · mac_os_x_server

apple · coregraphicsvulnerable

References (16)

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=730

http://lists.apple.com/archives/security-announce//2008/Jul/msg00003.html

http://secunia.com/advisories/31326

Vendor Advisory

http://www.securityfocus.com/bid/30483