Lucene search

[email protected]CVE-2007-2403

HistoryAug 03, 2007 - 10:17 a.m.

CVE-2007-2403

2007-08-0310:17:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cfnetwork

apple

mac os x

ftp

security vulnerability

remote attack

nvd

6.8 Medium

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.026 Low

EPSS

Percentile

90.1%

JSON

CFNetwork on Apple Mac OS X 10.3.9 and 10.4.10 does not properly validate ftp: URIs, which allows remote attackers to trigger the transmission of arbitrary FTP commands to arbitrary FTP servers.

CPENameOperatorVersion
apple:cfnetworkapple cfnetworkeq*

CPE	Name	Operator	Version
apple:cfnetwork	apple cfnetwork	eq	*

References

docs.info.apple.com/article.html?artnum=306172

lists.apple.com/archives/security-announce//2007/Jul/msg00004.html

secunia.com/advisories/26235

securitytracker.com/id?1018491

www.securityfocus.com/bid/25159

www.vupen.com/english/advisories/2007/2732

exchange.xforce.ibmcloud.com/vulnerabilities/35721

6.8 Medium

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.026 Low

EPSS

Percentile

90.1%

JSON

Related for CVE-2007-2403

prion1 nessus1 seebug1