Intrusion Prevention

Apple.macOS.ARGB.Code.Execution

Description

This indicates an attempt to exploit a code-execution vulnerability in Apple Mac OS X.
The vulnerability is caused by an error when the vulnerable software handles a specially crafted PICT image with a malformed "ARGB" record. It may allow a remote attacker to crash an affected application or execute arbitrary code on a vulnerable system with the privileges of the application.

Affected Products

Apple Mac OS X version 10.4.8 and prior.

Impact

System compromise: Remote attackers can gain control of vulnerable systems.
Denial of service: Remote attackers can crash vulnerable systems.

Recommended Actions

Upgrade to the latest version:
http://www.apple.com/macosx/

CVE References

CVE-2007-0588 CVE-2007-0462