Lucene search

[email protected]CVE-2006-4413

HistoryNov 18, 2006 - 1:07 a.m.

CVE-2006-4413

2006-11-1801:07:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

apple

remote desktop

vulnerability

cve-2006-4413

nvd

7 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON

Apple Remote Desktop before 3.1 uses insecure permissions for certain built-in packages, which allows local users on an Apple Remote Desktop administration system to modify the packages and gain root privileges on client systems that use the packages.

CPENameOperatorVersion
apple:remote_desktopapple remote desktople3.0

CPE	Name	Operator	Version
apple:remote_desktop	apple remote desktop	le	3.0

References

lists.apple.com/archives/security-announce/2006/Nov/msg00000.html

secunia.com/advisories/22982

securitytracker.com/id?1017241

www.securityfocus.com/bid/21139

www.vupen.com/english/advisories/2006/4567

7 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON