{"id":"CVE-2010-3798","details":"Heap-based buffer overflow in xar in Apple Mac OS X 10.6.x before 10.6.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted xar archive.","modified":"2026-04-10T03:41:26.994233Z","published":"2010-11-16T22:00:16Z","references":[{"type":"ADVISORY","url":"http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html"},{"type":"ADVISORY","url":"http://support.apple.com/kb/HT4435"},{"type":"FIX","url":"http://support.apple.com/kb/HT4435"},{"type":"WEB","url":"http://www.securitytracker.com/id?1024723"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2S2KRIILUKBJHXDNYJQQX74TFUQRG5ND/"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YV6RF6VWM7AFYFTTS7VY5TNH26QUEEFC/"}],"schema_version":"1.7.5"}