Unrated severityNVD Advisory· Published Jun 24, 2011· Updated Jun 16, 2026
CVE-2011-0200
CVE-2011-0200
Description
Integer overflow in ColorSync in Apple Mac OS X before 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via an image containing a crafted embedded ColorSync profile that triggers a heap-based buffer overflow.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
17cpe:2.3:o:apple:mac_os_x:10.6.0:*:*:*:*:*:*:*+ 8 more
- cpe:2.3:o:apple:mac_os_x:10.6.0:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.6.1:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.6.2:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.6.3:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.6.4:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.6.5:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.6.6:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.6.7:*:*:*:*:*:*:*
- (no CPE)range: <10.6.8
cpe:2.3:o:apple:mac_os_x_server:10.6.0:*:*:*:*:*:*:*+ 7 more
- cpe:2.3:o:apple:mac_os_x_server:10.6.0:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x_server:10.6.1:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x_server:10.6.2:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x_server:10.6.3:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x_server:10.6.4:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x_server:10.6.5:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x_server:10.6.6:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x_server:10.6.7:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
8- lists.apple.com/archives/security-announce/2011//Jun/msg00000.htmlnvdPatchVendor Advisory
- support.apple.com/kb/HT4723nvdPatchVendor Advisory
- lists.apple.com/archives/Security-announce/2011//Oct/msg00000.htmlnvd
- lists.apple.com/archives/security-announce/2011//Jul/msg00002.htmlnvd
- lists.apple.com/archives/security-announce/2012/Feb/msg00000.htmlnvd
- support.apple.com/kb/HT4808nvd
- support.apple.com/kb/HT4981nvd
- support.apple.com/kb/HT5130nvd
News mentions
0No linked articles in our index yet.