Lucene search
AppleCVE-2011-0173HistoryMar 23, 2011 - 2:00 a.m.
CVE-2011-0173
2011-03-2302:00:04
CWE-134
apple
web.nvd.nist.gov
40
cve-2011-0173
applescript
apple
mac os x
format string vulnerabilities
arbitrary code execution
denial of service
nvd
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
6.8
Confidence
High
EPSS
0.003
Percentile
69.2%
Multiple format string vulnerabilities in AppleScript in Apple Mac OS X before 10.6.7 allow context-dependent attackers to execute arbitrary code or cause a denial of service (application crash) via format string specifiers in a (1) display dialog or (2) display alert command in a dialog in an AppleScript Studio application.
Affected configurations
Node
appleapplescript
ORapplemac_os_xRange≤10.6.6
ORapplemac_os_xMatch10.6.0
ORapplemac_os_xMatch10.6.1
ORapplemac_os_xMatch10.6.2
ORapplemac_os_xMatch10.6.3
ORapplemac_os_xMatch10.6.4
ORapplemac_os_xMatch10.6.5
Node
appleapplescript
ORapplemac_os_x_serverRange≤10.6.6
ORapplemac_os_x_serverMatch10.6.0
ORapplemac_os_x_serverMatch10.6.1
ORapplemac_os_x_serverMatch10.6.2
ORapplemac_os_x_serverMatch10.6.3
ORapplemac_os_x_serverMatch10.6.4
ORapplemac_os_x_serverMatch10.6.5
| Vendor | Product | Version | CPE |
|---|---|---|---|
| apple | applescript | * | cpe:2.3:a:apple:applescript:*:*:*:*:*:*:*:* |
| apple | mac_os_x | * | cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:* |
| apple | mac_os_x | 10.6.0 | cpe:2.3:o:apple:mac_os_x:10.6.0:*:*:*:*:*:*:* |
| apple | mac_os_x | 10.6.1 | cpe:2.3:o:apple:mac_os_x:10.6.1:*:*:*:*:*:*:* |
| apple | mac_os_x | 10.6.2 | cpe:2.3:o:apple:mac_os_x:10.6.2:*:*:*:*:*:*:* |
| apple | mac_os_x | 10.6.3 | cpe:2.3:o:apple:mac_os_x:10.6.3:*:*:*:*:*:*:* |
| apple | mac_os_x | 10.6.4 | cpe:2.3:o:apple:mac_os_x:10.6.4:*:*:*:*:*:*:* |
| apple | mac_os_x | 10.6.5 | cpe:2.3:o:apple:mac_os_x:10.6.5:*:*:*:*:*:*:* |
| apple | mac_os_x_server | * | cpe:2.3:o:apple:mac_os_x_server:*:*:*:*:*:*:*:* |
| apple | mac_os_x_server | 10.6.0 | cpe:2.3:o:apple:mac_os_x_server:10.6.0:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2011-0173
2011-03-23 01:00:00
prion
prion
Format string
2011-03-23 02:00:00
nvd
nvd
CVE-2011-0173
2011-03-23 02:00:04
nessus
nessus
Mac OS X 10.6.x < 10.6.7 Multiple Vulnerabilities
2011-03-22 00:00:00
securityvulns
securityvulns
Apple Mac OS X multiple security vulnerabilities
2011-03-23 00:00:00
About the security content of Mac OS X v10.6.7 and Security Update 2011-001
2011-03-23 00:00:00
openvas
openvas
Mac OS X v10.6.6 Multiple Vulnerabilities (2011-001)
2011-08-26 00:00:00
Mac OS X v10.6.6 Multiple Vulnerabilities (2011-001)
2011-08-26 00:00:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
6.8
Confidence
High
EPSS
0.003
Percentile
69.2%
Related for CVE-2011-0173