Format string

🗓️ 10 Jan 2011 20:00:00Reported by PRIOn knowledge baseType

Format string vulnerability in PackageKit in Apple Mac OS X 10.6.x before 10.6.6 allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (application crash) via vectors related to interaction between Software Update and distribution scripts

Reporter	Title	Published	Views	Family All 10
Tenable Nessus	Mac OS X 10.6 < 10.6.6 Multiple Vulnerabilities	6 Jan 201100:00	–	nessus
Tenable Nessus	Mac OS X 10.6 < 10.6.6 Multiple Vulnerabilities	6 Jan 201100:00	–	nessus
Tenable Nessus	Mac OS X 10.6.x < 10.6.6 Multiple Vulnerabilities	6 Jan 201100:00	–	nessus
CVE	CVE-2010-4013	10 Jan 201119:18	–	cve
Cvelist	CVE-2010-4013	10 Jan 201119:18	–	cvelist
EUVD	EUVD-2010-3989	7 Oct 202500:30	–	euvd
NVD	CVE-2010-4013	10 Jan 201120:00	–	nvd
OpenVAS	Apple Mac OS X PackageKit Format String Vulnerability	23 Aug 201100:00	–	openvas
OpenVAS	Apple Mac OS X PackageKit Format String Vulnerability	23 Aug 201100:00	–	openvas
seebug.org	Apple Mac OS PackageKit Distribution脚本远程代码执行漏洞	11 Jan 201100:00	–	seebug

Source	Link
support	www.support.apple.com/kb/HT4498
secunia	www.secunia.com/advisories/42841
lists	www.lists.apple.com/archives/security-announce/2011//Jan/msg00000.html
osvdb	www.osvdb.org/70309
securitytracker	www.securitytracker.com/id
vupen	www.vupen.com/english/advisories/2011/0050

20 Jan 2011 06:45Current

7.9High risk

Vulners AI Score7.9

EPSS0.00717

packagekit apple mac os x man-in-the-middle arbitrary code denial of service application crash software update distribution scripts