{"vuid":"VU#403593","idnumber":"403593","name":"Apple Mac OS X ATS data-font memory corruption vulnerability","keywords":["bff","FontBook","Apple Type Services","dfont"],"overview":"Apple Mac OS X ATS contains a memory corruption vulnerability that may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system.","clean_desc":"Apple Mac OS X ATS (Apple Type Services) fails to properly handle malformed data-font (.dfont) files, resulting in memory corruption.","impact":"By convincing a user to open a specially-crafted font in Font Book, a remote, unauthenticated attacker may be able to execute arbitrary code on a vulnerable system.","resolution":"Apply an update\nThis issue is addressed in OS X Lion v10.7.3 and Security Update 2012-001.","workarounds":"","sysaffected":"","thanks":"This vulnerability was reported by Will Dormann of the CERT/CC.","author":"This document was written by Will Dormann.","public":["h","t","t","p",":","/","/","s","u","p","p","o","r","t",".","a","p","p","l","e",".","c","o","m","/","k","b","/","H","T","5","1","3","0"],"cveids":["CVE-2011-3446"],"certadvisory":"","uscerttechnicalalert":null,"datecreated":"2011-10-20T18:23:33Z","publicdate":"2012-02-02T00:00:00Z","datefirstpublished":"2012-02-02T16:30:03Z","dateupdated":"2012-03-28T14:53:47Z","revision":20,"vrda_d1_directreport":"1","vrda_d1_population":"3","vrda_d1_impact":"4","cam_widelyknown":"9","cam_exploitation":"0","cam_internetinfrastructure":"10","cam_population":"16","cam_impact":"15","cam_easeofexploitation":"3","cam_attackeraccessrequired":"10","cam_scorecurrent":"2.565","cam_scorecurrentwidelyknown":"4.05","cam_scorecurrentwidelyknownexploited":"6.75","ipprotocol":"","cvss_accessvector":"N","cvss_accesscomplexity":"M","cvss_authentication":null,"cvss_confidentialityimpact":"C","cvss_integrityimpact":"C","cvss_availabilityimpact":"P","cvss_exploitablity":null,"cvss_remediationlevel":"OF","cvss_reportconfidence":"C","cvss_collateraldamagepotential":"ND","cvss_targetdistribution":"ND","cvss_securityrequirementscr":"ND","cvss_securityrequirementsir":"ND","cvss_securityrequirementsar":"ND","cvss_basescore":"9","cvss_basevector":"AV:N/AC:M/Au:N/C:C/I:C/A:P","cvss_temporalscore":"7","cvss_environmentalscore":"7","cvss_environmentalvector":"CDP:ND/TD:ND/CR:ND/IR:ND/AR:ND","metric":2.565,"vulnote":null}