CVE-2005-2744

Name: CVE-2005-2744
Creator: NVD / NIST
Published: 2005-10-25T22:06:00+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 4.06%

Last modified Jun 16, 2026

CVE-2005-2744 is a vulnerability of currently unknown severity. Buffer overflow in QuickDraw Manager for Apple OS X 10.3.9 and 10.4.2, as used by applications such as Safari, Mail, and Finder, allows remote attackers to execute arbitrary code via a crafted PICT file.. EPSS estimates a 4.06% chance of exploitation in the next 30 days.

Description

Buffer overflow in QuickDraw Manager for Apple OS X 10.3.9 and 10.4.2, as used by applications such as Safari, Mail, and Finder, allows remote attackers to execute arbitrary code via a crafted PICT file.

Metrics

EPSS Probability

4.06%

89.4th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

Vendor	Product	Versions
Apple	Mac Os X	10.3
Apple	Mac Os X	10.3.1
Apple	Mac Os X	10.3.2
Apple	Mac Os X	10.3.3
Apple	Mac Os X	10.3.4
Apple	Mac Os X	10.3.5
Apple	Mac Os X	10.3.6
Apple	Mac Os X	10.3.7
Apple	Mac Os X	10.3.8
Apple	Mac Os X	10.3.9
Apple	Mac Os X	10.4
Apple	Mac Os X	10.4.1
Apple	Mac Os X	10.4.2
Apple	Mac Os X Server	10.3
Apple	Mac Os X Server	10.3.1
Apple	Mac Os X Server	10.3.2
Apple	Mac Os X Server	10.3.3
Apple	Mac Os X Server	10.3.4
Apple	Mac Os X Server	10.3.5
Apple	Mac Os X Server	10.3.6
Apple	Mac Os X Server	10.3.7
Apple	Mac Os X Server	10.3.8
Apple	Mac Os X Server	10.3.9
Apple	Mac Os X Server	10.4
Apple	Mac Os X Server	10.4.1
Apple	Mac Os X Server	10.4.2

References

http://lists.apple.com/archives/security-announce/2005/Sep/msg00002.htmlVendor Advisory
http://secunia.com/advisories/16920/Patch, Vendor Advisory
http://securitytracker.com/alerts/2005/Sep/1014961.html
http://www.auscert.org.au/5509Vendor Advisory
http://www.ciac.org/ciac/bulletins/p-312.shtmlUS Government Resource
http://www.kb.cert.org/vuls/id/529945US Government Resource
http://www.securityfocus.com/bid/14914Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/22384
http://lists.apple.com/archives/security-announce/2005/Sep/msg00002.htmlVendor Advisory
http://secunia.com/advisories/16920/Patch, Vendor Advisory
http://securitytracker.com/alerts/2005/Sep/1014961.html
http://www.auscert.org.au/5509Vendor Advisory
http://www.ciac.org/ciac/bulletins/p-312.shtmlUS Government Resource
http://www.kb.cert.org/vuls/id/529945US Government Resource
http://www.securityfocus.com/bid/14914Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/22384

Timeline

Published: Oct 25, 2005
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2005-2744?

How severe is CVE-2005-2744?

Severity scoring for CVE-2005-2744 is pending analysis. The EPSS model estimates a 4.06% probability of exploitation in the next 30 days.

How do I fix CVE-2005-2744?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2005-2744?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST