Lucene search

[email protected]CVE-2006-4400

HistoryNov 30, 2006 - 4:28 p.m.

CVE-2006-4400

2006-11-3016:28:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2006-4400

buffer overflow

apple type services

ats server

mac os

nvd

7.7 High

AI Score

Confidence

Low

5.1 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

0.012 Low

EPSS

Percentile

84.7%

JSON

Stack-based buffer overflow in the Apple Type Services (ATS) server in Mac OS 10.4.8 and earlier allow user-assisted attackers to execute arbitrary code via crafted font files.

CPENameOperatorVersion
apple:mac_os_xapple mac os xle10.4.8

CPE	Name	Operator	Version
apple:mac_os_x	apple mac os x	le	10.4.8

References

docs.info.apple.com/article.html?artnum=304829

lists.apple.com/archives/security-announce/2006/Nov/msg00001.html

secunia.com/advisories/23155

securitytracker.com/id?1017301

www.kb.cert.org/vuls/id/835936

www.osvdb.org/30737

www.securityfocus.com/bid/21335

www.us-cert.gov/cas/techalerts/TA06-333A.html

www.vupen.com/english/advisories/2006/4750

7.7 High

AI Score

Confidence

Low

5.1 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

0.012 Low

EPSS

Percentile

84.7%

JSON

Related for CVE-2006-4400

cert1 seebug2 nessus1