CVE ID:	CVE-2008-4211
Description:	Integer signedness error in (1) QuickLook in Apple Mac OS X 10.5.5 and (2) Office Viewer in Apple iPhone OS 1.0 through 2.1 and iPhone OS for iPod touch 1.1 through 2.1 allows remote attackers to cause a denial of service (application termination) and execute arbitrary code via a crafted Microsoft Excel file that triggers an out-of-bounds memory access, related to "handling of columns."
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2008-4211 http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html http://lists.apple.com/archives/security-announce/2008/Nov/msg00002.html BugTraq ID: 31681 http://www.securityfocus.com/bid/31681 BugTraq ID: 31707 http://www.securityfocus.com/bid/31707 http://www.vupen.com/english/advisories/2008/2780 http://www.vupen.com/english/advisories/2008/3232 http://www.securitytracker.com/id?1021027 http://secunia.com/advisories/32222 http://secunia.com/advisories/32756 XForce ISS Database: macosx-quicklook2-code-execution(45784) http://xforce.iss.net/xforce/xfdb/45784

New User Registration Email: UserID: Passwd: Please email me your monthly newsletters, informing the latest services, improvements & surveys. Please email me a vulnerability test announcement whenever a new test is added.     Privacy

Registered User Login   UserID:     Passwd:     Forgot userid or passwd? Email/Userid: