ID CVE-2006-1440
Summary BOM in Apple Mac OS X 10.3.9 and 10.4.6 allows attackers to overwrite arbitrary files via an archive that contains symbolic links. This vulnerability is addressed in the following product release: Apple, Mac OS X, 10.4.6 (2006-003)
References
Vulnerable Configurations
  • cpe:2.3:o:apple:mac_os_x:10.3.9:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.3.9:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.4.6:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.4.6:*:*:*:*:*:*:*
CVSS
Base: 2.1 (as of 20-07-2017 - 01:30)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE PARTIAL NONE
cvss-vector via4 AV:L/AC:L/Au:N/C:N/I:P/A:N
refmap via4
apple APPLE-SA-2006-05-11
bid 17951
cert TA06-132A
osvdb 25584
sectrack 1016082
secunia 20077
vupen ADV-2006-1779
xf macos-bom-archive-file-overwrite(26405)
Last major update 20-07-2017 - 01:30
Published 12-05-2006 - 21:02
Last modified 20-07-2017 - 01:30
Back to Top