{"vuid":"VU#410281","idnumber":"410281","name":"Apple Mac OS X CoreText embedded font vulnerability","keywords":["BFF","FontBook","embedded font"],"overview":"Apple Mac OS X CoreText contains a use-after-free vulnerability that may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system.","clean_desc":"Apple Mac OS X CoreText is a text layout and font processing engine that is used to handle embedded fonts.CoreText contains a use-after-free vulnerability that can allow arbitrary code execution.","impact":"By convincing a user to open a document with a specially-crafted embedded font, a remote, unauthenticated attacker may be able to execute arbitrary code on a vulnerable system.","resolution":"Apply an update\nThis issue is addressed in OS X Lion v10.7.3 and Security Update 2012-001.","workarounds":"","sysaffected":"","thanks":"This vulnerability was reported by Will Dormann of the CERT/CC.","author":"This document was written by Will Dormann.","public":["http://support.apple.com/kb/HT5130","http://developer.apple.com/library/mac/documentation/StringsTextFonts/Conceptual/CoreText_Programming/Introduction/Introduction.html"],"cveids":["CVE-2011-3449"],"certadvisory":"","uscerttechnicalalert":null,"datecreated":"2012-02-02T16:19:36Z","publicdate":"2012-02-02T00:00:00Z","datefirstpublished":"2012-02-02T16:39:02Z","dateupdated":"2012-03-28T14:54:57Z","revision":7,"vrda_d1_directreport":"1","vrda_d1_population":"3","vrda_d1_impact":"4","cam_widelyknown":"9","cam_exploitation":"0","cam_internetinfrastructure":"10","cam_population":"20","cam_impact":"15","cam_easeofexploitation":"3","cam_attackeraccessrequired":"18","cam_scorecurrent":"5.77125","cam_scorecurrentwidelyknown":"9.1125","cam_scorecurrentwidelyknownexploited":"15.1875","ipprotocol":"","cvss_accessvector":"N","cvss_accesscomplexity":"M","cvss_authentication":null,"cvss_confidentialityimpact":"C","cvss_integrityimpact":"C","cvss_availabilityimpact":"P","cvss_exploitablity":null,"cvss_remediationlevel":"OF","cvss_reportconfidence":"C","cvss_collateraldamagepotential":"ND","cvss_targetdistribution":"ND","cvss_securityrequirementscr":"ND","cvss_securityrequirementsir":"ND","cvss_securityrequirementsar":"ND","cvss_basescore":"9","cvss_basevector":"AV:N/AC:M/Au:N/C:C/I:C/A:P","cvss_temporalscore":"7","cvss_environmentalscore":"7","cvss_environmentalvector":"CDP:ND/TD:ND/CR:ND/IR:ND/AR:ND","metric":5.77125,"vulnote":null}