10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
6.1 Medium
AI Score
Confidence
Low
0.036 Low
EPSS
Percentile
91.7%
The Application Firewall in Apple Mac OS X 10.5 does not prevent a root process from accepting incoming connections, even when “Block incoming connections” has been set for its associated executable, which might allow remote attackers or local root processes to bypass intended access restrictions.
CPE | Name | Operator | Version |
---|---|---|---|
apple:mac_os_x | apple mac os x | eq | 10.5 |
apple:mac_os_x_server | apple mac os x server | eq | 10.5 |