Lucene search

[email protected]CVE-2006-1448

HistoryMay 12, 2006 - 9:02 p.m.

CVE-2006-1448

2006-05-1221:02:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2006-1448

apple

mac os x

finder

code execution

security vulnerability

7.3 High

AI Score

Confidence

Low

6.5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

0.005 Low

EPSS

Percentile

76.3%

JSON

Finder in Apple Mac OS X 10.3.9 and 10.4.6 allows user-assisted attackers to execute arbitrary code by tricking a user into launching an Internet Location item that appears to use a safe URL scheme, but which actually has a different and more risky scheme.

CPENameOperatorVersion
apple:mac_os_xapple mac os xeq10.4.6
apple:mac_os_xapple mac os xeq10.3.9

CPE	Name	Operator	Version
apple:mac_os_x	apple mac os x	eq	10.4.6
apple:mac_os_x	apple mac os x	eq	10.3.9

References

lists.apple.com/archives/security-announce/2006/May/msg00003.html

secunia.com/advisories/20077

securitytracker.com/id?1016082

www.osvdb.org/25592

www.securityfocus.com/bid/17951

www.us-cert.gov/cas/techalerts/TA06-132A.html

www.vupen.com/english/advisories/2006/1779

exchange.xforce.ibmcloud.com/vulnerabilities/26410

7.3 High

AI Score

Confidence

Low

6.5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

0.005 Low

EPSS

Percentile

76.3%

JSON

Related for CVE-2006-1448

prion1 nessus1