iWork: Security features in the iWork 9.1 Update
Summary
Learn more about the security features in the iWork 9.1 Update.
Products Affected
Product Security, iWork '09
iWork 9.1 Update
-
Numbers
Available for: iWork 9.0 through 9.0.5
Impact: Opening a maliciously crafted Excel file may lead to an unexpected application termination or arbitrary code execution
Description: A buffer overflow existed in the handling of Excel files. Opening a maliciously crafted Excel file in Numbers may lead to an unexpected application termination or arbitrary code execution.
CVE-ID
CVE-2010-3785 : Apple
-
Numbers
Available for: iWork 9.0 through 9.0.5.
Impact: Opening a maliciously crafted Excel file may lead to an unexpected application termination or arbitrary code execution.
Description: A memory corruption issue existed in the handling of Excel files. Opening a maliciously crafted Excel file in Numbers may lead to an unexpected application termination or arbitrary code execution.
CVE-ID
CVE-2010-3786 : Tobias Klein, working with VeriSign iDefense Labs
-
Pages
Available for: iWork 9.0 through 9.0.5
Impact: Opening a maliciously crafted Microsoft Word document may lead to an unexpected application termination or arbitrary code execution.
Description: A memory corruption issue existed in the handling of Microsoft Word documents. Opening a maliciously crafted Microsoft Word document in Pages may lead to an unexpected application termination or arbitrary code execution.
CVE-ID
CVE-2011-1417 : Charlie Miller and Dion Blazakis working with TippingPoint's Zero Day Initiative
Twitter
Facebook