CVE-2011-0190

2011-03-2302:00:06

CWE-20

[email protected]

web.nvd.nist.gov

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

6.2

Confidence

Low

EPSS

0.002

Percentile

61.1%

JSON

Install Helper in Installer in Apple Mac OS X before 10.6.7 does not properly process an unspecified URL, which might allow remote attackers to track user logins by logging network traffic from an agent that was intended to send network traffic to an Apple server.

Affected configurations

Nvd

Node

appleinstaller

applemac_os_xMatch10.6.0

applemac_os_xMatch10.6.1

applemac_os_xMatch10.6.2

applemac_os_xMatch10.6.3

applemac_os_xMatch10.6.4

applemac_os_xMatch10.6.5

applemac_os_xMatch10.6.6

Node

appleinstaller

applemac_os_x_serverMatch10.6.0

applemac_os_x_serverMatch10.6.1

applemac_os_x_serverMatch10.6.2

applemac_os_x_serverMatch10.6.3

applemac_os_x_serverMatch10.6.4

applemac_os_x_serverMatch10.6.5

applemac_os_x_serverMatch10.6.6

VendorProductVersionCPE
appleinstaller*cpe:2.3:a:apple:installer:*:*:*:*:*:*:*:*
applemac_os_x10.6.0cpe:2.3:o:apple:mac_os_x:10.6.0:*:*:*:*:*:*:*
applemac_os_x10.6.1cpe:2.3:o:apple:mac_os_x:10.6.1:*:*:*:*:*:*:*
applemac_os_x10.6.2cpe:2.3:o:apple:mac_os_x:10.6.2:*:*:*:*:*:*:*
applemac_os_x10.6.3cpe:2.3:o:apple:mac_os_x:10.6.3:*:*:*:*:*:*:*
applemac_os_x10.6.4cpe:2.3:o:apple:mac_os_x:10.6.4:*:*:*:*:*:*:*
applemac_os_x10.6.5cpe:2.3:o:apple:mac_os_x:10.6.5:*:*:*:*:*:*:*
applemac_os_x10.6.6cpe:2.3:o:apple:mac_os_x:10.6.6:*:*:*:*:*:*:*
applemac_os_x_server10.6.0cpe:2.3:o:apple:mac_os_x_server:10.6.0:*:*:*:*:*:*:*
applemac_os_x_server10.6.1cpe:2.3:o:apple:mac_os_x_server:10.6.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
apple	installer	*	cpe:2.3:a:apple:installer::::::::
apple	mac_os_x	10.6.0	cpe:2.3:o:apple:mac_os_x:10.6.0:::::::*
apple	mac_os_x	10.6.1	cpe:2.3:o:apple:mac_os_x:10.6.1:::::::*
apple	mac_os_x	10.6.2	cpe:2.3:o:apple:mac_os_x:10.6.2:::::::*
apple	mac_os_x	10.6.3	cpe:2.3:o:apple:mac_os_x:10.6.3:::::::*
apple	mac_os_x	10.6.4	cpe:2.3:o:apple:mac_os_x:10.6.4:::::::*
apple	mac_os_x	10.6.5	cpe:2.3:o:apple:mac_os_x:10.6.5:::::::*
apple	mac_os_x	10.6.6	cpe:2.3:o:apple:mac_os_x:10.6.6:::::::*
apple	mac_os_x_server	10.6.0	cpe:2.3:o:apple:mac_os_x_server:10.6.0:::::::*
apple	mac_os_x_server	10.6.1	cpe:2.3:o:apple:mac_os_x_server:10.6.1:::::::*