Lucene search

[email protected]CVE-2008-3634

HistoryOct 03, 2022 - 4:13 p.m.

CVE-2008-3634

2022-10-0316:13:43

CWE-200

[email protected]

web.nvd.nist.gov

apple

itunes

cve-2008-3634

security

firewall

mac os x 10.4.11

nvd

remote attackers

exposure

2.6 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:N/A:N

5.9 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

61.2%

JSON

Apple iTunes before 8.0 on Mac OS X 10.4.11, when iTunes Music Sharing is enabled but blocked by the host-based firewall, presents misleading information about firewall security, which might allow remote attackers to leverage an exposure that would be absent if the administrator were given better information.

Affected configurations

NVD

Node

applemac_os_xMatch10.4.11

applemac_os_x_serverMatch10.4.11

AND

appleitunes

appleitunesRange≤7.7.1

appleitunesMatch1.0

appleitunesMatch1.1

appleitunesMatch1.1.1

appleitunesMatch1.1.2

appleitunesMatch2.0

appleitunesMatch2.0.1

appleitunesMatch2.0.2

appleitunesMatch2.0.3

appleitunesMatch2.0.4

appleitunesMatch3.0

appleitunesMatch3.0.1

appleitunesMatch4.0

appleitunesMatch4.0.1

appleitunesMatch4.1

appleitunesMatch4.2

appleitunesMatch4.2.72

appleitunesMatch4.5

appleitunesMatch4.6

appleitunesMatch4.7

appleitunesMatch4.7.1

appleitunesMatch4.7.1.30

appleitunesMatch4.8

appleitunesMatch4.9

appleitunesMatch5.0

appleitunesMatch5.0.1

appleitunesMatch6.0

appleitunesMatch6.0.1

appleitunesMatch6.0.2

appleitunesMatch6.0.3

appleitunesMatch6.0.4

appleitunesMatch6.0.4.2

appleitunesMatch6.0.5

appleitunesMatch7.0.2

appleitunesMatch7.3.2

appleitunesMatch7.4

appleitunesMatch7.4.1

appleitunesMatch7.4.2

appleitunesMatch7.4.3

appleitunesMatch7.5

appleitunesMatch7.6

appleitunesMatch7.6.1

appleitunesMatch7.6.2

appleitunesMatch7.7

CPENameOperatorVersion
apple:itunesapple ituneseq*
apple:itunesapple itunesle7.7.1
apple:itunesapple ituneseq1.0
apple:itunesapple ituneseq1.1
apple:itunesapple ituneseq1.1.1
apple:itunesapple ituneseq1.1.2
apple:itunesapple ituneseq2.0
apple:itunesapple ituneseq2.0.1
apple:itunesapple ituneseq2.0.2
apple:itunesapple ituneseq2.0.3

CPE	Name	Operator	Version
apple:itunes	apple itunes	eq	*
apple:itunes	apple itunes	le	7.7.1
apple:itunes	apple itunes	eq	1.0
apple:itunes	apple itunes	eq	1.1
apple:itunes	apple itunes	eq	1.1.1
apple:itunes	apple itunes	eq	1.1.2
apple:itunes	apple itunes	eq	2.0
apple:itunes	apple itunes	eq	2.0.1
apple:itunes	apple itunes	eq	2.0.2
apple:itunes	apple itunes	eq	2.0.3

Rows per page:

1-10 of 451

References

lists.apple.com/archives/security-announce//2008/Sep/msg00001.html

securitytracker.com/id?1020840

www.securityfocus.com/bid/31090

2.6 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:N/A:N

5.9 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

61.2%

JSON

Related for CVE-2008-3634

seebug1 nvd1 cvelist1 prion1