| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 6.4 | $0-$5k | 0.09 |
Summary
A vulnerability classified as critical has been found in Apple Mac OS X 10.9.2. This impacts an unknown function of the component ImageIO. This manipulation causes memory corruption. This vulnerability appears as CVE-2014-1319. There is no available exploit. It is suggested to install a patch to address this issue.
Details
A vulnerability classified as critical was found in Apple Mac OS X 10.9.2 (Operating System). Affected by this vulnerability is some unknown processing of the component ImageIO. The manipulation with an unknown input leads to a memory corruption vulnerability. The CWE definition for the vulnerability is CWE-119. The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer. As an impact it is known to affect confidentiality, integrity, and availability. The summary by CVE is:
Buffer overflow in ImageIO in Apple OS X 10.9.x through 10.9.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted JPEG image.
The weakness was presented 04/22/2014 by Cristian Draghici and Karl Smith with NCC Group as HT6207 as confirmed advisory (Website). The advisory is shared at support.apple.com. The public release was coordinated in cooperation with Apple. This vulnerability is known as CVE-2014-1319 since 01/08/2014. The exploitation appears to be difficult. The attack can be launched remotely. The exploitation doesn't need any form of authentication. Neither technical details nor an exploit are publicly available. The advisory points out:
Viewing a maliciously crafted JPEG image may lead to an unexpected application termination or arbitrary code execution
The vulnerability scanner Nessus provides a plugin with the ID 73648 (Mac OS X Multiple Vulnerabilities (Security Update 2014-002)), which helps to determine the existence of the flaw in a target environment. It is assigned to the family MacOS X Local Security Checks. The commercial vulnerability scanner Qualys is able to test this issue with plugin 122028 (Apple Mac OS X Security Update 2014-002 Not Installed (HT6207)).
Applying the patch Security Update 2014-002 is able to eliminate this problem. The bugfix is ready for download at support.apple.com. A possible mitigation has been published immediately after the disclosure of the vulnerability. The advisory contains the following remark:
This issue was addressed through improved bounds checking. This issue does not affect systems prior to OS X Mavericks.
The vulnerability is also documented in the databases at X-Force (92699), Tenable (73648), SecurityFocus (BID 67022†), Secunia (SA58081†) and SecurityTracker (ID 1030133†). See VDB-10903, VDB-13041, VDB-13040 and VDB-13039 for similar entries. Several companies clearly confirm that VulDB is the primary source for best vulnerability data.
Product
Type
Vendor
Name
Version
License
Support
Website
- Vendor: https://www.apple.com/
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 7.3VulDB Meta Temp Score: 6.4
VulDB Base Score: 7.3
VulDB Temp Score: 6.4
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Memory corruptionCWE: CWE-119
CAPEC: 🔍
ATT&CK: 🔍
Physical: No
Local: No
Remote: Yes
Availability: 🔍
Status: Unproven
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Nessus ID: 73648
Nessus Name: Mac OS X Multiple Vulnerabilities (Security Update 2014-002)
Nessus File: 🔍
Nessus Risk: 🔍
Nessus Family: 🔍
Qualys ID: 🔍
Qualys Name: 🔍
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: PatchStatus: 🔍
Reaction Time: 🔍
0-Day Time: 🔍
Exposure Time: 🔍
Patch: Security Update 2014-002
Timeline
01/08/2014 🔍04/22/2014 🔍
04/22/2014 🔍
04/22/2014 🔍
04/22/2014 🔍
04/23/2014 🔍
04/23/2014 🔍
04/23/2014 🔍
04/23/2014 🔍
04/23/2014 🔍
06/17/2021 🔍
Sources
Vendor: apple.comAdvisory: HT6207
Researcher: Cristian Draghici, Karl Smith
Organization: NCC Group
Status: Confirmed
Coordinated: 🔍
CVE: CVE-2014-1319 (🔍)
GCVE (CVE): GCVE-0-2014-1319
GCVE (VulDB): GCVE-100-13033
X-Force: 92699 - Apple Mac OS X ImageIO buffer overflow, Medium Risk
SecurityFocus: 67022 - Apple MAC OS X ImageIO CVE-2014-1319 Buffer Overflow Vulnerability
Secunia: 58081 - Apple OS X Multiple Vulnerabilities, Highly Critical
SecurityTracker: 1030133 - Apple OS X Multiple Bugs Let Remote Users Execute Arbitrary Code and Deny Service and Local Users Gain Elevated Privileges
Vulnerability Center: 44210 - Apple Mac OS X 10.9.2 Remote Code Execution or DoS in ImageIO by Viewing Crafted JPEG, Medium
scip Labs: https://www.scip.ch/en/?labs.20150108
See also: 🔍
Entry
Created: 04/23/2014 12:25Updated: 06/17/2021 14:42
Changes: 04/23/2014 12:25 (53), 05/26/2017 03:39 (36), 06/17/2021 14:42 (3)
Complete: 🔍
Cache ID: 216:778:103
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.
No comments yet. Languages: en.
Please log in to comment.