Lucene search

[email protected]CVE-2006-1439

HistoryMay 12, 2006 - 9:02 p.m.

CVE-2006-1439

2006-05-1221:02:00

CWE-200

[email protected]

web.nvd.nist.gov

cve-2006-1439

appkit

apple

mac os x

security vulnerability

keyboard events

6.3 Medium

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.003 Low

EPSS

Percentile

65.4%

JSON

NSSecureTextField in AppKit in Apple Mac OS X 10.4.6 does not re-enable secure event input under certain circumstances, which could allow other applications in the window session to monitor input characters and keyboard events.

CPENameOperatorVersion
apple:mac_os_xapple mac os xeq10.4.6

CPE	Name	Operator	Version
apple:mac_os_x	apple mac os x	eq	10.4.6

References

lists.apple.com/archives/security-announce/2006/May/msg00003.html

secunia.com/advisories/20077

www.osvdb.org/25583

www.securityfocus.com/bid/17951

www.us-cert.gov/cas/techalerts/TA06-132A.html

www.vupen.com/english/advisories/2006/1779

exchange.xforce.ibmcloud.com/vulnerabilities/26404

Social References

6.3 Medium

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.003 Low

EPSS

Percentile

65.4%

JSON

Related for CVE-2006-1439

prion1 nessus1