CVE-2006-1983

N/A Unknown
Published: April 21, 2006 Modified: April 16, 2026
View on NVD

Description

Multiple heap-based buffer overflows in Mac OS X 10.4.6 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) PredictorVSetField function for TIFF or (2) CFAllocatorAllocate function for GIF, as used in applications that use ImageIO or AppKit. NOTE: the BMP vector has been re-assigned to CVE-2006-2238 because it affects a separate product family.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://lists.apple.com/archives/security-announce/2006/May/msg00003.html
Source: cve@mitre.org
Patch
http://secunia.com/advisories/19686
Source: cve@mitre.org
Vendor Advisory
http://secunia.com/advisories/20077
Source: cve@mitre.org
Patch Vendor Advisory
http://securitytracker.com/id?1016067
Source: cve@mitre.org
Patch
http://www.osvdb.org/24821
Source: cve@mitre.org
http://www.osvdb.org/24822
Source: cve@mitre.org
http://www.security-protocols.com/modules.php?name=News&file=article&sid=3233
Source: cve@mitre.org
Exploit
http://www.security-protocols.com/sp-x28-advisory.php
Source: cve@mitre.org
Vendor Advisory
http://www.security-protocols.com/sp-x30-advisory.php
Source: cve@mitre.org
Vendor Advisory
http://www.securityfocus.com/bid/17634
Source: cve@mitre.org
Exploit
http://www.securityfocus.com/bid/17951
Source: cve@mitre.org
http://www.us-cert.gov/cas/techalerts/TA06-132A.html
Source: cve@mitre.org
Patch Third Party Advisory US Government Resource
http://www.vupen.com/english/advisories/2006/1452
Source: cve@mitre.org
Vendor Advisory
http://www.vupen.com/english/advisories/2006/1779
Source: cve@mitre.org
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/25949
Source: cve@mitre.org
https://exchange.xforce.ibmcloud.com/vulnerabilities/25951
Source: cve@mitre.org
http://lists.apple.com/archives/security-announce/2006/May/msg00003.html
Source: af854a3a-2127-422b-91ae-364da2661108
Patch
http://secunia.com/advisories/19686
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://secunia.com/advisories/20077
Source: af854a3a-2127-422b-91ae-364da2661108
Patch Vendor Advisory
http://securitytracker.com/id?1016067
Source: af854a3a-2127-422b-91ae-364da2661108
Patch
http://www.osvdb.org/24821
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.osvdb.org/24822
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.security-protocols.com/modules.php?name=News&file=article&sid=3233
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit
http://www.security-protocols.com/sp-x28-advisory.php
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://www.security-protocols.com/sp-x30-advisory.php
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://www.securityfocus.com/bid/17634
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit
http://www.securityfocus.com/bid/17951
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.us-cert.gov/cas/techalerts/TA06-132A.html
Source: af854a3a-2127-422b-91ae-364da2661108
Patch Third Party Advisory US Government Resource
http://www.vupen.com/english/advisories/2006/1452
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://www.vupen.com/english/advisories/2006/1779
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/25949
Source: af854a3a-2127-422b-91ae-364da2661108
https://exchange.xforce.ibmcloud.com/vulnerabilities/25951
Source: af854a3a-2127-422b-91ae-364da2661108

32 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
36.2%
97th percentile
Exploitation Status
Not in CISA KEV

Weaknesses (CWE)

CWE-119

Affected Vendors

apple

Related CVEs

CVE-2026-41279 N/A
CVE-2026-41278 N/A
CVE-2026-41277 N/A
CVE-2026-41276 N/A
CVE-2026-41275 N/A