ColorSync on Mac OS X 10.3.7 and 10.3.8 allows attackers to execute arbitrary code via malformed ICC color profiles that modify the heap.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Mac_os_x | Apple | 10.2.8 (including) | 10.2.8 (including) |
| Mac_os_x | Apple | 10.3.7 (including) | 10.3.7 (including) |
| Mac_os_x | Apple | 10.3.8 (including) | 10.3.8 (including) |
| Mac_os_x_server | Apple | 10.2.8 (including) | 10.2.8 (including) |
| Mac_os_x_server | Apple | 10.3.7 (including) | 10.3.7 (including) |