Lucene search

[email protected]NVD:CVE-2005-1331

HistoryMay 04, 2005 - 4:00 a.m.

CVE-2005-1331

2005-05-0404:00:00

[email protected]

web.nvd.nist.gov

CVSS2

5.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

AI Score

6.8

Confidence

Low

EPSS

0.011

Percentile

84.1%

JSON

The AppleScript Editor in Mac OS X 10.3.9 does not properly display script code for an applescript: URI, which can result in code that is different than the actual code that would be run, which could allow remote attackers to trick users into executing malicious code via certain URI characters such as NULL, control characters, and homographs.

Affected configurations

Nvd

Node

appleapplescriptMatch2.0.0

Node

applemac_os_xMatch10.3

applemac_os_xMatch10.3.1

applemac_os_xMatch10.3.2

applemac_os_xMatch10.3.3

applemac_os_xMatch10.3.4

applemac_os_xMatch10.3.5

applemac_os_xMatch10.3.6

applemac_os_xMatch10.3.7

applemac_os_xMatch10.3.8

applemac_os_xMatch10.3.9

applemac_os_x_serverMatch10.3

applemac_os_x_serverMatch10.3.1

applemac_os_x_serverMatch10.3.2

applemac_os_x_serverMatch10.3.3

applemac_os_x_serverMatch10.3.4

applemac_os_x_serverMatch10.3.5

applemac_os_x_serverMatch10.3.6

applemac_os_x_serverMatch10.3.7

applemac_os_x_serverMatch10.3.8

applemac_os_x_serverMatch10.3.9

VendorProductVersionCPE
appleapplescript2.0.0cpe:2.3:a:apple:applescript:2.0.0:*:*:*:*:*:*:*
applemac_os_x10.3cpe:2.3:o:apple:mac_os_x:10.3:*:*:*:*:*:*:*
applemac_os_x10.3.1cpe:2.3:o:apple:mac_os_x:10.3.1:*:*:*:*:*:*:*
applemac_os_x10.3.2cpe:2.3:o:apple:mac_os_x:10.3.2:*:*:*:*:*:*:*
applemac_os_x10.3.3cpe:2.3:o:apple:mac_os_x:10.3.3:*:*:*:*:*:*:*
applemac_os_x10.3.4cpe:2.3:o:apple:mac_os_x:10.3.4:*:*:*:*:*:*:*
applemac_os_x10.3.5cpe:2.3:o:apple:mac_os_x:10.3.5:*:*:*:*:*:*:*
applemac_os_x10.3.6cpe:2.3:o:apple:mac_os_x:10.3.6:*:*:*:*:*:*:*
applemac_os_x10.3.7cpe:2.3:o:apple:mac_os_x:10.3.7:*:*:*:*:*:*:*
applemac_os_x10.3.8cpe:2.3:o:apple:mac_os_x:10.3.8:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
apple	applescript	2.0.0	cpe:2.3:a:apple:applescript:2.0.0:::::::*
apple	mac_os_x	10.3	cpe:2.3:o:apple:mac_os_x:10.3:::::::*
apple	mac_os_x	10.3.1	cpe:2.3:o:apple:mac_os_x:10.3.1:::::::*
apple	mac_os_x	10.3.2	cpe:2.3:o:apple:mac_os_x:10.3.2:::::::*
apple	mac_os_x	10.3.3	cpe:2.3:o:apple:mac_os_x:10.3.3:::::::*
apple	mac_os_x	10.3.4	cpe:2.3:o:apple:mac_os_x:10.3.4:::::::*
apple	mac_os_x	10.3.5	cpe:2.3:o:apple:mac_os_x:10.3.5:::::::*
apple	mac_os_x	10.3.6	cpe:2.3:o:apple:mac_os_x:10.3.6:::::::*
apple	mac_os_x	10.3.7	cpe:2.3:o:apple:mac_os_x:10.3.7:::::::*
apple	mac_os_x	10.3.8	cpe:2.3:o:apple:mac_os_x:10.3.8:::::::*

Rows per page:

1-10 of 211

References

lists.apple.com/archives/security-announce/2005/May/msg00001.html

remahl.se/david/vuln/010/

secunia.com/advisories/15227

www.securityfocus.com/bid/13480

www.vupen.com/english/advisories/2005/0455

CVSS2

5.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

AI Score

6.8

Confidence

Low

EPSS

0.011

Percentile

84.1%

JSON

Related for NVD:CVE-2005-1331

cvelist1 cve1 securityvulns1 nessus1