8 matches found
CVE-2006-0395
creationtimestamp| type| source ---|---|--- 2011-03-05 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16870 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/osx/email/mailappimageexec.rb 2025-02-06 03:13:38+00:00| seen|...
Mail.app Image Attachment Command Execution
$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Mail.app Ima...
Design/Logic Flaw
Mail in Apple Mac OS X Leopard 10.5.1 allows user-assisted remote attackers to execute arbitrary code via an AppleDouble attachment containing an apparently-safe file type and script in a resource fork, which does not warn the user that a separate program is going to be executed. NOTE: this is a...
Mail.app Image Attachment Command Execution
This module exploits a command execution vulnerability in the Mail.app application shipped with Mac OS X 10.5.0. This flaw was patched in 10.4 in March of 2007, but reintroduced into the final release of 10.5. This module requires Metasploit: https://metasploit.com/download Current source:...
CVE-2006-0395
CVE-2006-0395 describes a vulnerability in Mail.app on Apple Mac OS X where Download Validation for attachments fails to recognize unsafe types. This allows user-assisted remote attackers to trigger arbitrary code execution via crafted attachments (AppleDouble/resource fork scenarios). The issue ...
Mac OS X Multiple Vulnerabilities (Security Update 2006-001)
The remote host is running Apple Mac OS X, but lacks Security Update 2006-001. This security update contains fixes for the following applications : apachemodphp automount Bom Directory Services iChat IPSec LaunchServices LibSystem loginwindow Mail rsync Safari Syndication C Tenable Network...
Mail.App 10.5.0 Image Attachment Command Execution (OS X)
No description provided by source. $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...
Apple Mail.App 10.5.0 (OSX) - Image Attachment Command Execution (Metasploit)
Apple Mail.App 10.5.0 OSX - Image Attachment Command Execution Metasploit $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...