Lucene search

[email protected]NVD:CVE-2007-5857

HistoryDec 19, 2007 - 9:46 p.m.

CVE-2007-5857

2007-12-1921:46:00

CWE-264

[email protected]

web.nvd.nist.gov

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

AI Score

5.6

Confidence

Low

EPSS

0.014

Percentile

86.8%

JSON

Quick Look in Apple Mac OS X 10.5.1 does not prevent a movie from accessing URLs when the movie file is previewed or if an icon is created, which might allow remote attackers to obtain sensitive information via HREFTrack.

Affected configurations

Nvd

Node

applemac_os_xMatch10.5.1

VendorProductVersionCPE
applemac_os_x10.5.1cpe:2.3:o:apple:mac_os_x:10.5.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
apple	mac_os_x	10.5.1	cpe:2.3:o:apple:mac_os_x:10.5.1:::::::*

References

docs.info.apple.com/article.html?artnum=307179

lists.apple.com/archives/security-announce/2007/Dec/msg00002.html

secunia.com/advisories/28136

securitytracker.com/id?1019106

www.securityfocus.com/bid/26910

www.us-cert.gov/cas/techalerts/TA07-352A.html

www.vupen.com/english/advisories/2007/4238

exchange.xforce.ibmcloud.com/vulnerabilities/39106

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

AI Score

5.6

Confidence

Low

EPSS

0.014

Percentile

86.8%

JSON

Related for NVD:CVE-2007-5857

cve1 cvelist1 prion1 seebug1 openvas2 nessus1