6.3 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.011 Low
EPSS
Percentile
84.2%
LaunchServices in Apple Mac OS X 10.4.6 allows remote attackers to cause Safari to launch unsafe content via long file name extensions, which prevents Download Validation from determining which application will be used to open the file.
CPE | Name | Operator | Version |
---|---|---|---|
apple:mac_os_x | apple mac os x | eq | 10.4.6 |
lists.apple.com/archives/security-announce/2006/May/msg00003.html
secunia.com/advisories/20077
securitytracker.com/id?1016081
www.osvdb.org/25591
www.securityfocus.com/bid/17951
www.us-cert.gov/cas/techalerts/TA06-132A.html
www.vupen.com/english/advisories/2006/1779
exchange.xforce.ibmcloud.com/vulnerabilities/26416