CVE-2005-2750 - Software Update in Mac OS X 10.4.2, when the user marks all updates to be ignored, exits without ask

CVE-2005-2750

Summary

Software Update in Mac OS X 10.4.2, when the user marks all updates to be ignored, exits without asking the user to reset the status of the updates, which could prevent important, security-relevant updates from being installed.

References

http://lists.apple.com/archives/security-announce/2005/Oct/msg00000.html
http://secunia.com/advisories/17368
http://securitytracker.com/id?1015124
http://www.osvdb.org/20428
http://www.securityfocus.com/bid/15252
http://www.vupen.com/english/advisories/2005/2256
https://exchange.xforce.ibmcloud.com/vulnerabilities/44464

Vulnerable Configurations

cpe:2.3:o:apple:mac_os_x_server:10.4.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x_server:10.4.2:*:*:*:*:*:*:*

CVSS

Base:	2.1 (as of 11-07-2017 - 01:32)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	PARTIAL	NONE

cvss-vector via4

AV:L/AC:L/Au:N/C:N/I:P/A:N

refmap via4

apple	APPLE-SA-2005-10-31
bid	15252
osvdb	20428
sectrack	1015124
secunia	17368
vupen	ADV-2005-2256
xf	macos-softwareupdate-weak-security(44464)

Last major update

11-07-2017 - 01:32

Published

01-11-2005 - 12:47

Last modified

11-07-2017 - 01:32