Lucene search

K

PRIOn knowledge basePRION:CVE-2007-4680

HistoryNov 15, 2007 - 1:46 a.m.

Code injection

2007-11-1501:46:00

PRIOn knowledge base

www.prio-n.com

1

6.2 Medium

AI Score

Confidence

Low

0.011 Low

EPSS

Percentile

84.3%

CFNetwork in Apple Mac OS X 10.3.9 and 10.4 through 10.4.10 does not properly validate certificates, which allows remote attackers to spoof trusted SSL certificates via a man-in-the-middle attack.

CPENameOperatorVersion
mac_os_xeq10.4.3
mac_os_xeq10.4.1
mac_os_xeq10.4.9
mac_os_xeq10.4.7
mac_os_xeq10.4.4
mac_os_xeq10.4.6
mac_os_xeq10.4.5
mac_os_xeq10.4.8
mac_os_xeq10.4.2

References

docs.info.apple.com/article.html?artnum=307041

docs.info.apple.com/article.html?artnum=307563

lists.apple.com/archives/security-announce/2007/Nov/msg00002.html

secunia.com/advisories/27643

securitytracker.com/id?1018950

www.securityfocus.com/bid/26444

www.us-cert.gov/cas/techalerts/TA07-319A.html

www.vupen.com/english/advisories/2007/3868

www.vupen.com/english/advisories/2008/0920/references

exchange.xforce.ibmcloud.com/vulnerabilities/38463

6.2 Medium

AI Score

Confidence

Low

0.011 Low

EPSS

Percentile

84.3%

Related for PRION:CVE-2007-4680

cve1 cvelist1 nvd1 seebug1 nessus1