This script is Copyright (C) 2008-2014 Tenable Network Security, Inc.
The remote Mac OS X host contains an application that is affected by a
format string vulnerability.
The remote host is running a version of iPhoto 7.1 older than version
7.1.2. Such versions are reportedly affected by a format string
vulnerability. If an attacker can trick a user on the affected host
into subscribing to a specially crafted photocast, these issues could
be leveraged to execute arbitrary code on the affected host subject to
the user's privileges.
See also :
Upgrade to iPhoto 7.1.2 or later.
Risk factor :
Medium / CVSS Base Score : 6.8
CVSS Temporal Score : 5.0
Public Exploit Available : false
Family: MacOS X Local Security Checks
Nessus Plugin ID: 30201 (macosx_iphoto712.nasl)
Bugtraq ID: 27636
CVE ID: CVE-2008-0043
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.