| ID |
CVE-2006-5328
|
| Summary |
OpenBase SQL 10.0 and earlier, as used in Apple Xcode 2.2 2.2 and earlier and possibly other products, allows local users to create arbitrary files via a symlink attack on the simulation.sql file. |
| References |
|
| Vulnerable Configurations |
-
cpe:2.3:a:apple:xcode:-:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:-:*:*:*:*:*:*:*
-
cpe:2.3:a:apple:xcode:1.5.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:1.5.0:*:*:*:*:*:*:*
-
cpe:2.3:a:apple:xcode:2.0.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:2.0.0:*:*:*:*:*:*:*
-
cpe:2.3:a:apple:xcode:2.1.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:2.1.0:*:*:*:*:*:*:*
-
cpe:2.3:a:openbase_international_ltd:openbase:7.0.15:*:mac_os_x:*:*:*:*:*
cpe:2.3:a:openbase_international_ltd:openbase:7.0.15:*:mac_os_x:*:*:*:*:*
-
cpe:2.3:a:openbase_international_ltd:openbase:8.0.4:*:mac_os_x:*:*:*:*:*
cpe:2.3:a:openbase_international_ltd:openbase:8.0.4:*:mac_os_x:*:*:*:*:*
-
cpe:2.3:a:openbase_international_ltd:openbase:9.1.5:*:mac_os_x:*:*:*:*:*
cpe:2.3:a:openbase_international_ltd:openbase:9.1.5:*:mac_os_x:*:*:*:*:*
-
cpe:2.3:a:openbase_international_ltd:openbase:*:*:mac_os_x:*:*:*:*:*
cpe:2.3:a:openbase_international_ltd:openbase:*:*:mac_os_x:*:*:*:*:*
|
| CVSS |
| Base: | 7.2 (as of 13-08-2018 - 21:47) |
| Impact: | |
| Exploitability: | |
|
| CWE |
NVD-CWE-Other |
| CAPEC |
|
| Access |
| Vector | Complexity | Authentication |
| LOCAL |
LOW |
NONE |
|
| Impact |
| Confidentiality | Integrity | Availability |
| COMPLETE |
COMPLETE |
COMPLETE |
|
| cvss-vector
via4
|
AV:L/AC:L/Au:N/C:C/I:C/A:C
|
| refmap
via4
|
| apple | APPLE-SA-2007-10-30 | | bid | 20562 | | misc | | | sectrack | 1018872 | | secunia | | | vupen | ADV-2007-3665 |
|
| Last major update |
13-08-2018 - 21:47 |
| Published |
17-10-2006 - 21:07 |
| Last modified |
13-08-2018 - 21:47 |
