6 matches found
CVE-2006-0395
creationtimestamp| type| source ---|---|--- 2011-03-05 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16870 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/osx/email/mailappimageexec.rb 2025-02-06 03:13:38+00:00| seen|...
Design/Logic Flaw
Mail in Apple Mac OS X Leopard 10.5.1 allows user-assisted remote attackers to execute arbitrary code via an AppleDouble attachment containing an apparently-safe file type and script in a resource fork, which does not warn the user that a separate program is going to be executed. NOTE: this is a...
CVE-2006-0395
CVE-2006-0395 describes a vulnerability in Mail.app on Apple Mac OS X where Download Validation for attachments fails to recognize unsafe types. This allows user-assisted remote attackers to trigger arbitrary code execution via crafted attachments (AppleDouble/resource fork scenarios). The issue ...
Mac OS X Multiple Vulnerabilities (Security Update 2006-001)
The remote host is running Apple Mac OS X, but lacks Security Update 2006-001. This security update contains fixes for the following applications : apachemodphp automount Bom Directory Services iChat IPSec LaunchServices LibSystem loginwindow Mail rsync Safari Syndication C Tenable Network...
Apple Mail.App 10.5.0 (OSX) - Image Attachment Command Execution (Metasploit)
Apple Mail.App 10.5.0 OSX - Image Attachment Command Execution Metasploit $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Mail.App 10.5.0 Image Attachment Command Execution (OS X)
No description provided by source. $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...