← Back

CVE-2008-4221

nvd nist
Published: Dec 17, 2008Modified: Apr 23, 2026

JSON object

Loading...
10.0
Vector
AV:N/AC:L/Au:N/C:C/I:C/A:C
Exploitability: 10.0 / Impact: 10.0
Source: NVD

Description

The strptime API in Libsystem in Apple Mac OS X before 10.5.6 allows context-dependent attackers to cause a denial of service (memory corruption and application crash) or execute arbitrary code via a crafted date string, related to improper memory allocation.

Affected (14)

Apple
2 products
Mac Os X
Mac Os X Server
Configuration A
14 vulnerable
Vulnerable SoftwareAffected Versions
Apple
Mac Os X
Up to 10.5.5
Mac Os X
Version 10.4.11
Mac Os X
Version 10.5.1
Mac Os X
Version 10.5.2
Mac Os X
Version 10.5.3
Mac Os X
Version 10.5.4
Mac Os X
Version 10.5
Apple
Mac Os X Server
Up to 10.5.5
Mac Os X Server
Version 10.4.11
Mac Os X Server
Version 10.5.1
Mac Os X Server
Version 10.5.2
Mac Os X Server
Version 10.5.3
Mac Os X Server
Version 10.5.4
Mac Os X Server
Version 10.5

Related CWEs

CWE-399
CWE-399

References (16)

Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
US Government Resource
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
US Government Resource
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.