Lucene search

[email protected]CVE-2005-1472

HistoryOct 03, 2022 - 4:22 p.m.

CVE-2005-1472

2022-10-0316:22:42

[email protected]

web.nvd.nist.gov

cve-2005-1472

apple

mac os x

permissions

security vulnerability

local users

directory listing

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Certain system calls in Apple Mac OS X 10.4.1 do not properly enforce the permissions of certain directories without the POSIX read bit set, but with the execute bits set for group or other, which allows local users to list files in otherwise restricted directories.

Affected configurations

NVD

Node

applemac_os_xMatch10.4.1

CPENameOperatorVersion
apple:mac_os_xapple mac os xeq10.4.1

CPE	Name	Operator	Version
apple:mac_os_x	apple mac os x	eq	10.4.1

References

lists.apple.com/archives/security-announce/2005/May/msg00004.html

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2005-1472

cvelist1 nvd1 nessus1