Lucene search

K
cve[email protected]CVE-2008-1000
HistoryMar 18, 2008 - 11:44 p.m.

CVE-2008-1000

2008-03-1823:44:00
CWE-22
web.nvd.nist.gov
46
apple
mac os x
10.5.2
wiki server
directory traversal
vulnerability
remote authentication
arbitrary files

5.8 Medium

AI Score

Confidence

Low

8.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:S/C:C/I:C/A:C

0.011 Low

EPSS

Percentile

83.9%

Directory traversal vulnerability in ContentServer.py in the Wiki Server in Apple Mac OS X 10.5.2 (aka Leopard) allows remote authenticated users to write arbitrary files via “…” sequences in file attachments.

5.8 Medium

AI Score

Confidence

Low

8.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:S/C:C/I:C/A:C

0.011 Low

EPSS

Percentile

83.9%