Lucene search

[email protected]CVE-2008-1572

HistoryJun 02, 2008 - 9:30 p.m.

CVE-2008-1572

2008-06-0221:30:00

CWE-264

[email protected]

web.nvd.nist.gov

image capture

apple

mac os x

cve-2008-1572

vulnerability

file overwrite

local users

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

5.9 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.3%

JSON

Image Capture in Apple Mac OS X before 10.5 does not properly use temporary files, which allows local users to overwrite arbitrary files, and display images that are being resized by this application.

Affected configurations

NVD

Node

applemac_os_xMatch10.4.11

applemac_os_x_serverMatch10.4.11

CPENameOperatorVersion
apple:mac_os_xapple mac os xeq10.4.11
apple:mac_os_x_serverapple mac os x servereq10.4.11

CPE	Name	Operator	Version
apple:mac_os_x	apple mac os x	eq	10.4.11
apple:mac_os_x_server	apple mac os x server	eq	10.4.11

References

lists.apple.com/archives/security-announce/2008//May/msg00001.html

secunia.com/advisories/30430

securitytracker.com/id?1020141

www.securityfocus.com/bid/29412

www.securityfocus.com/bid/29521

www.us-cert.gov/cas/techalerts/TA08-150A.html

www.vupen.com/english/advisories/2008/1697

exchange.xforce.ibmcloud.com/vulnerabilities/42719

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

5.9 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.3%

JSON

Related for CVE-2008-1572

prion1 cvelist1 nvd1 securityvulns2 seebug1 nessus2 openvas2