Lucene search

PRIOn knowledge basePRION:CVE-2007-0735

HistoryApr 24, 2007 - 5:19 p.m.

Design/Logic Flaw

2007-04-2417:19:00

PRIOn knowledge base

www.prio-n.com

8.1 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.015 Low

EPSS

Percentile

86.6%

JSON

Use-after-free vulnerability in Libinfo in Apple Mac OS X 10.3.9 through 10.4.9 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unspecified vectors involving crafted web pages that trigger certain error conditions that are not properly reported in certain circumstances, resulting in accessing deallocated memory.

CPENameOperatorVersion
mac_os_xeq10.4.3
mac_os_xeq10.4.1
mac_os_xeq10.4.9
mac_os_xeq10.4.7
mac_os_xeq10.4.4
mac_os_xeq10.4
mac_os_xeq10.4.6
mac_os_xeq10.4.5
mac_os_xeq10.3.9
mac_os_xeq10.4.8

Name	Operator	Version
mac_os_x	eq	10.4.3
mac_os_x	eq	10.4.1
mac_os_x	eq	10.4.9
mac_os_x	eq	10.4.7
mac_os_x	eq	10.4.4
mac_os_x	eq	10.4
mac_os_x	eq	10.4.6
mac_os_x	eq	10.4.5
mac_os_x	eq	10.3.9
mac_os_x	eq	10.4.8

Rows per page:

1-10 of 221

References

docs.info.apple.com/article.html?artnum=305391

lists.apple.com/archives/Security-announce/2007/Apr/msg00001.html

secunia.com/advisories/24966

www.osvdb.org/34860

www.securityfocus.com/bid/23569

www.securitytracker.com/id?1017942

www.us-cert.gov/cas/techalerts/TA07-109A.html

www.vupen.com/english/advisories/2007/1470

8.1 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.015 Low

EPSS

Percentile

86.6%

JSON

Related for PRION:CVE-2007-0735