var-200512-0749
Vulnerability from variot
The khtml::RenderTableSection::ensureRows function in KHTMLParser in Apple Mac OS X 10.4.3 and earlier, as used by Safari and TextEdit, allows remote attackers to cause a denial of service (memory consumption and application crash) via HTML files with a large ROWSPAN attribute in a TD tag. Apple Safari is vulnerable to a stack-based buffer overflow. Apple From Security Update 2006-001 Has been released. Mac OS X, Mac OS X Server, Safari web browser Vulnerability has been confirmed in such as. For more information, Apple Security Update 2006-001 Please refer to the.The potential impact depends on each vulnerability. For more information Apple See the information provided by. These vulnerabilities could allow a remote third party to execute arbitrary code or commands, bypass access restrictions, DoS You can be attacked. Apple Mac OS X是苹果家族电脑所使用的操作系统. Mac OS X的KHTML解析器中存在拒绝服务漏洞. 在运行特制的.html文件时,khtml::RenderTableSection::ensureRows没有正确的解析数据,导致崩溃。KTHML解析器试图将内部数组的大小调整为rowspan值所显示的单元数。如果这个值很大的话,就无法调整数组,应用程序就会终止. 下面显示的是gdb中OS X 10.4.3上使用Safari所触发的崩溃: Program received signal SIGABRT, Aborted. 0x9004716c in kill () (gdb) bt #0 0x9004716c in kill () #1 0x90128b98 in abort () #2 0x95dcd974 in khtml::sYSMALLOc () <(=-- Is called because of sYSMALLOc(1234567890) #3 0x95dce1a4 in khtml::main_thread_realloc () #4 0x95bc0d64 in KWQArrayImpl::resize () #5 0x95c05428 in khtml::RenderTableSection::ensureRows () #6 0x95c0784c in khtml::RenderTableSection::addCell () #7 0x95c076ac in khtml::RenderTableRow::addChild () #8 0x95bcb2d8 in DOM::NodeImpl::createRendererIfNeeded () #9 0x95bcb1c4 in DOM::ElementImpl::attach () #10 0x95bca254 in KHTMLParser::insertNode () #11 0x95bcadd8 in KHTMLParser::insertNode () #12 0x95bcadd8 in KHTMLParser::insertNode () #13 0x95bc83fc in KHTMLParser::parseToken () #14 0x95bc54a4 in khtml::HTMLTokenizer::processToken () #15 0x95bc6e08 in khtml::HTMLTokenizer::parseTag () #16 0x95bc4d24 in khtml::HTMLTokenizer::write () #17 0x95bc038c in KHTMLPart::write () #18 0x959b510c in -[WebDataSource(WebPrivate) _commitLoadWithData:] () #19 0x9598165c in -[WebMainResourceClient addData:] () #20 0x95981588 in -[WebBaseResourceHandleDelegate didReceiveData:lengthReceived:] () #21 0x959db930 in -[WebMainResourceClient didReceiveData:lengthReceived:] () #22 0x95981524 in -[WebBaseResourceHandleDelegate connection:didReceiveData:lengthReceived:] () #23 0x92910a64 in -[NSURLConnection(NSURLConnectionInternal) _sendDidReceiveDataCallback] () #24 0x9290ef04 in -[NSURLConnection(NSURLConnectionInternal) _sendCallbacks] () #25 0x9290eca0 in _sendCallbacks () #26 0x9075db20 in __CFRunLoopDoSources0 () #27 0x9075cf98 in __CFRunLoopRun () #28 0x9075ca18 in CFRunLoopRunSpecific () #29 0x931861e0 in RunCurrentEventLoopInMode () #30 0x931857ec in ReceiveNextEventCommon () #31 0x931856e0 in BlockUntilNextEventMatchingListInMode () #32 0x93683904 in _DPSNextEvent () #33 0x936835c8 in -[NSApplication nextEventMatchingMask:untilDate:inMode:dequeue:] () #34 0x00007910 in ?? () #35 0x9367fb0c in -[NSApplication run] () #36 0x93770618 in NSApplicationMain () #37 0x0000307c in ?? () #38 0x00057758 in ?? (). Successful exploitation may cause an application employing KHTMLParser to crash. When running a specially crafted .html file, khtml::RenderTableSection::ensureRows did not parse the data correctly, causing a crash. The KTHML parser attempts to resize the internal array to the number of cells indicated by the rowspan value. If this value is large, the array cannot be resized and the application will terminate. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
National Cyber Alert System
Technical Cyber Security Alert TA06-053A
Apple Mac OS X Safari Command Execution Vulnerability
Original release date: February 22, 2006 Last revised: -- Source: US-CERT
Systems Affected
Apple Safari running on Mac OS X
Overview
A file type determination vulnerability in Apple Safari could allow a remote attacker to execute arbitrary commands on a vulnerable system.
I.
Details are available in the following Vulnerability Note:
VU#999708 - Apple Safari may automatically execute arbitrary shell commands
II. If the user is logged on with administrative privileges, the attacker could take complete control of an affected system.
III. Solution
Since there is no known patch for this issue at this time, US-CERT is recommending a workaround. References
* US-CERT Vulnerability Note VU#999708 -
<http://www.kb.cert.org/vuls/id/999708>
* Securing Your Web Browser -
<http://www.us-cert.gov/reading_room/securing_browser/#sgeneral>
* Apple - Mac OS X - Safari RSS -
<http://www.apple.com/macosx/features/safari/>
The most recent version of this document can be found at:
<http://www.us-cert.gov/cas/techalerts/TA06-053A.html>
Feedback can be directed to US-CERT Technical Staff. Please send email to cert@cert.org with "TA06-053A Feedback VU#999708" in the subject.
For instructions on subscribing to or unsubscribing from this mailing list, visit http://www.us-cert.gov/cas/signup.html.
Produced 2006 by US-CERT, a government organization.
Terms of use:
<http://www.us-cert.gov/legal.html>
Revision History
Feb 22, 2006: Initial release
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (GNU/Linux)
iQEVAwUBQ/zKN30pj593lg50AQJgoQf/ZajorZz/6quzA40dc8cLxIBT70xcClH5 CKDN5nMXl1mRYYkDPF07GbcWL3lWarW5Hif0OiZfazaGNC3p9v4ZxDx/dW/ZmsYo eDznsNWNphKB6yBSIbOUSfGyh/I7pQlG3qxXRWDTA9nVK12KIkvAAoPTgBe40obu +x58gK5/ib4d+dEZ8F9SbO7/syYtcAzfzS2HrBYhG1lWWLYTaNC3hyI2nXF5lNV/ ymwaPv0ivAB9rpalus+KkajjiV5+J08dj+1JwgwcSpvuNMQ5c/8RCIILP+1bR+CL lScvGuSRYk4S0QI9nmCDvwD52sluiwp2VO1atTQ1zcgpwhvLRGo3DQ== =P2/3 -----END PGP SIGNATURE----- . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
APPLE-SA-2006-03-01 Security Update 2006-001
Security Update 2006-001 is now available and addresses the following issues:
apache_mod_php CVE-ID: CVE-2005-3319, CVE-2005-3353, CVE-2005-3391, CVE-2005-3392 Available for: Mac OS X v10.3.9, Mac OS X Server v10.3.9, Mac OS X v10.4.5, Mac OS X Server v10.4.5 Impact: Multiple security issues in PHP 4.4 Description: PHP 4.4.1 fixes several security issues in the Apache module and scripting environment. Details of the fixes are available via the PHP web site (www.php.net). This framework is vulnerable to a directory traversal attack that can allow archived files to be unpacked into arbitrary locations that are writable by the current user. This update addresses the issue by properly sanitizing those paths. Credit to Stephane Kardas of CERTA for reporting this issue. This could lead to privilege elevation. This update addresses the issue by anticipating a hostile environment and by creating temporary files securely. Credit to Ilja van Sprundel of Suresec LTD, vade79, and iDefense (idefense.com) for reporting this issue. This update secures the method in which a FileVault image is created. This update addresses the issues by correctly handling the conditions that may cause crashes. Credit to OUSPG from the University of Oulu, NISCC, and CERT-FI for coordinating and reporting this issue. This update addresses the issue by correctly handling these memory requests. Credit to Neil Archibald of Suresec LTD for reporting this issue.
Mail CVE-ID: CVE-2006-0395 Available for: Mac OS X v10.4.5, Mac OS X Server v10.4.5 Impact: Download Validation fails to warn about unsafe file types Description: In Mac OS X v10.4 Tiger, when an email attachment is double-clicked in Mail, Download Validation is used to warn the user if the file type is not "safe". Certain techniques can be used to disguise the file's type so that Download Validation is bypassed. This update addresses the issue by presenting Download Validation with the entire file, providing more information for Download Validation to detect unknown or unsafe file types in attachments.
perl CVE-ID: CVE-2005-4217 Available for: Mac OS X v10.3.9, Mac OS X Server v10.3.9 Impact: Perl programs may fail to drop privileges Description: When a perl program running as root attempts to switch to another user ID, the operation may fail without notification to the program. This may cause a program to continue to run with root privileges, assuming they have been dropped. This can cause security issues in third-party tools. This update addresses the issue by preventing such applications from continuing if the operation fails. Credit to Jason Self for reporting this issue.
rsync CVE-ID: CVE-2005-3712 Available for: Mac OS X v10.4.5, Mac OS X Server v10.4.5 Impact: Authenticated users may cause an rsync server to crash or execute arbitrary code Description: A heap-based buffer overflow may be triggered when the rsync server is used with the flag that allows extended attributes to be transferred. It may be possible for a malicious user with access to an rsync server to cause denial of service or code execution. This update addresses the problem by ensuring that the destination buffer is large enough to hold the extended attributes. Credit to Jan-Derk Bakker for reporting this issue. This update addresses the issue by preventing the condition causing the overflow. Credit to Suresec LTD for reporting this issue. This update addresses the issue by performing additional bounds checking. An issue involving HTTP redirection can cause the browser to access a local file, bypassing certain restrictions. This update addresses the issue by preventing cross-domain HTTP redirects. When the "Open `safe' files after downloading" option is enabled in Safari's General preferences, visiting a malicious web site may result in the automatic download and execution of such a file. A proof-of-concept has been detected on public web sites that demonstrates the automatic execution of shell scripts.
Syndication CVE-ID: CVE-2006-0389 Available for: Mac OS X v10.4.5, Mac OS X Server v10.4.5 Impact: Subscriptions to malicious RSS content can lead to cross-site scripting Description: Syndication (Safari RSS) may allow JavaScript code embedded in feeds to run within the context of the RSS reader document, allowing malicious feeds to circumvent Safari's security model. This update addresses the issue by properly removing JavaScript code from feeds.
The following security enhancements are also included in this update:
FileVault: AES-128 encrypted FileVault disk images are now created with more restrictive operating system permissions. Credit to Eric Hall of DarkArt Consulting Services for reporting this issue.
iChat: A malicious application named Leap.A that attempts to propagate using iChat has been detected.
Users should use caution when opening files that are obtained from the network. Further information is available via: http://docs.info.apple.com/article.html?artnum=108009
Security Update 2006-001 may be obtained from the Software Update pane in System Preferences, or Apple's Software Downloads web site: http://www.apple.com/support/downloads/
For Mac OS X v10.4.5 (PowerPC) and Mac OS X Server v10.4.5 The download file is named: "SecUpd2006-001Ti.dmg" Its SHA-1 digest is: 999b73a54951b4e0a7f873fecf75f92840e8b439
For Mac OS X v10.4.5 (Intel) The download file is named: "SecUpd2006-001Intel.dmg" Its SHA-1 digest is: 473f94264876fa49fa15a8b6bb4bc30956502ad5
For Mac OS X v10.3.9 The download file is named: "SecUpd2006-001Pan.dmg" Its SHA-1 digest is: b6a000d451a1b1696726ff60142fc3da08042433
For Mac OS X Server v10.3.9 The download file is named: "SecUpdSrvr2006-001Pan.dmg" Its SHA-1 digest is: 2299380d72a61eadcbd0a5c6f46c924600ff5a9c
Information will also be posted to the Apple Product Security web site: http://docs.info.apple.com/article.html?artnum=61798
This message is signed with Apple's Product Security PGP key, and details are available at: http://www.apple.com/support/security/pgp/
-----BEGIN PGP SIGNATURE----- Version: PGP Desktop 9.0.5 (Build 5050)
iQEVAwUBRAYYVoHaV5ucd/HdAQJQWggApQmizj2t3+/87Fqun66/HCEkFt2YhUoe cmel0/KwJhWrk+LV+CYvixbDvKuGIjP8CWB9/s78YN93pOI5WcfyTKd07rEQYkT4 i8KPrM9QjdvgIjKd6O/VAOkzBc3DqV7KNVR2Hewa3jOigTm7Yxil9o/nZt1TLxAI 9TN0uduc13WHC8WE2N41I8MQ+VdGTX3ANZkfgR90lua4A2E1ab9kCN2qbg+E7Cus SkwsKp0qSH7bl8v0/R6c1hsYG0T1RwSWU6arAEliqzrrIbCm0Yxtgwp/CYFWC46j TQNCcppNgcr/pVPojACy8WFtQ3wEb6rJ4ZjH1C5nOem2EoCBh10WFw== =1Ww0 -----END PGP SIGNATURE-----
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-200512-0749",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": null,
"scope": null,
"trust": 1.6,
"vendor": "apple computer",
"version": null
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.6,
"vendor": "apple",
"version": "10.3.5"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.6,
"vendor": "apple",
"version": "10.4"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.6,
"vendor": "apple",
"version": "10.4.3"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.6,
"vendor": "apple",
"version": "10.3.8"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.6,
"vendor": "apple",
"version": "10.3.6"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.6,
"vendor": "apple",
"version": "10.4.2"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.6,
"vendor": "apple",
"version": "10.3.7"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.6,
"vendor": "apple",
"version": "10.3.4"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.6,
"vendor": "apple",
"version": "10.4.1"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.6,
"vendor": "apple",
"version": "10.3.9"
},
{
"model": "safari",
"scope": "eq",
"trust": 1.3,
"vendor": "apple",
"version": "2.0.2"
},
{
"model": "safari",
"scope": "eq",
"trust": 1.3,
"vendor": "apple",
"version": "2.0.1"
},
{
"model": "safari",
"scope": "eq",
"trust": 1.3,
"vendor": "apple",
"version": "1.3"
},
{
"model": "safari",
"scope": "eq",
"trust": 1.3,
"vendor": "apple",
"version": "1.2.3"
},
{
"model": "safari",
"scope": "eq",
"trust": 1.3,
"vendor": "apple",
"version": "1.2.2"
},
{
"model": "safari",
"scope": "eq",
"trust": 1.3,
"vendor": "apple",
"version": "1.2.1"
},
{
"model": "safari",
"scope": "eq",
"trust": 1.3,
"vendor": "apple",
"version": "1.2"
},
{
"model": "safari",
"scope": "eq",
"trust": 1.3,
"vendor": "apple",
"version": "1.1"
},
{
"model": "safari",
"scope": "eq",
"trust": 1.3,
"vendor": "apple",
"version": "1.0"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.2"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.2.4"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.3.2"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.2.2"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.0.1"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.1.2"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.2.6"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.2.1"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.3"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.2.8"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.1.4"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.4"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.2.5"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.3.8"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.3.7"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.1.1"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.2.7"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.1"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.3.1"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.0"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.1.5"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.2.3"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.3.3"
},
{
"model": "safari",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "2.0"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.1.3"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.2"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.0.2"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.4.3"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.2.4"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.3.2"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.3.6"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.2.1"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.1.2"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.2.6"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.3"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.0.4"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.2.2"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.2.3"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.0.3"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.2.8"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.1.4"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.4.1"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.2.5"
},
{
"model": "textedit",
"scope": "lte",
"trust": 1.0,
"vendor": "apple",
"version": "1.4"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.3.5"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.2.7"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.3.4"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.1"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.1.1"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.1.5"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.3.1"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.3.9"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.0"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.4.2"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.3.3"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.1.3"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 0.8,
"vendor": "apple",
"version": "v10.3.9"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 0.8,
"vendor": "apple",
"version": "v10.4.5"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 0.8,
"vendor": "apple",
"version": "v10.3.9"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 0.8,
"vendor": "apple",
"version": "v10.4.5"
},
{
"model": "directory pro",
"scope": "eq",
"trust": 0.3,
"vendor": "cosmicperl",
"version": "10.0.3"
},
{
"model": "mobile safari",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "0"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.4.3"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.4.2"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.4.1"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.4"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.3.9"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.3.8"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.3.7"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.3.6"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.3.5"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.3.4"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.3.3"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.3.2"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.3.1"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.3"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.2.8"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.2.7"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.2.6"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.2.5"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.2.4"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.2.3"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.2.2"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.2.1"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.2"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.1.5"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.1.4"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.1.3"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.1.2"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.1.1"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.1"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.0"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.4.5"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.4.3"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.4.2"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.4.1"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.4"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.3.9"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.3.8"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.3.7"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.3.6"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.3.5"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.3.4"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.3.3"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.3.2"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.3.1"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.3"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.2.8"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.2.7"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.2.6"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.2.5"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.2.4"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.2.3"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.2.2"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.2.1"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.2"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.1.5"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.1.4"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.1.3"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.1.2"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.1.1"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.1"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.0.4"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.0.2"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.0.1"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.03"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.0"
}
],
"sources": [
{
"db": "CERT/CC",
"id": "VU#351217"
},
{
"db": "CERT/CC",
"id": "VU#176732"
},
{
"db": "BID",
"id": "16045"
},
{
"db": "JVNDB",
"id": "JVNDB-2006-000880"
},
{
"db": "CNNVD",
"id": "CNNVD-200512-545"
},
{
"db": "NVD",
"id": "CVE-2005-4504"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/o:apple:mac_os_x",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:apple:mac_os_x_server",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2006-000880"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Tom Ferris tommy@security-protocols.com",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-200512-545"
}
],
"trust": 0.6
},
"cve": "CVE-2005-4504",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "COMPLETE",
"baseScore": 7.8,
"confidentialityImpact": "NONE",
"exploitabilityScore": 10.0,
"id": "CVE-2005-4504",
"impactScore": 6.9,
"integrityImpact": "NONE",
"severity": "HIGH",
"trust": 1.1,
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "COMPLETE",
"baseScore": 7.8,
"confidentialityImpact": "NONE",
"exploitabilityScore": 10.0,
"id": "VHN-15712",
"impactScore": 6.9,
"integrityImpact": "NONE",
"severity": "HIGH",
"trust": 0.1,
"vectorString": "AV:N/AC:L/AU:N/C:N/I:N/A:C",
"version": "2.0"
}
],
"cvssV3": [],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2005-4504",
"trust": 1.0,
"value": "HIGH"
},
{
"author": "CARNEGIE MELLON",
"id": "VU#351217",
"trust": 0.8,
"value": "17.21"
},
{
"author": "CARNEGIE MELLON",
"id": "VU#176732",
"trust": 0.8,
"value": "17.21"
},
{
"author": "CNNVD",
"id": "CNNVD-200512-545",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "VULHUB",
"id": "VHN-15712",
"trust": 0.1,
"value": "HIGH"
},
{
"author": "VULMON",
"id": "CVE-2005-4504",
"trust": 0.1,
"value": "HIGH"
}
]
}
],
"sources": [
{
"db": "CERT/CC",
"id": "VU#351217"
},
{
"db": "CERT/CC",
"id": "VU#176732"
},
{
"db": "VULHUB",
"id": "VHN-15712"
},
{
"db": "VULMON",
"id": "CVE-2005-4504"
},
{
"db": "CNNVD",
"id": "CNNVD-200512-545"
},
{
"db": "NVD",
"id": "CVE-2005-4504"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "The khtml::RenderTableSection::ensureRows function in KHTMLParser in Apple Mac OS X 10.4.3 and earlier, as used by Safari and TextEdit, allows remote attackers to cause a denial of service (memory consumption and application crash) via HTML files with a large ROWSPAN attribute in a TD tag. Apple Safari is vulnerable to a stack-based buffer overflow. Apple From Security Update 2006-001 Has been released. Mac OS X, Mac OS X Server, Safari web browser Vulnerability has been confirmed in such as. For more information, Apple Security Update 2006-001 Please refer to the.The potential impact depends on each vulnerability. For more information Apple See the information provided by. These vulnerabilities could allow a remote third party to execute arbitrary code or commands, bypass access restrictions, DoS You can be attacked. Apple Mac OS X\u662f\u82f9\u679c\u5bb6\u65cf\u7535\u8111\u6240\u4f7f\u7528\u7684\u64cd\u4f5c\u7cfb\u7edf. \nMac OS X\u7684KHTML\u89e3\u6790\u5668\u4e2d\u5b58\u5728\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e. \n\u5728\u8fd0\u884c\u7279\u5236\u7684.html\u6587\u4ef6\u65f6\uff0ckhtml\uff1a\uff1aRenderTableSection\uff1a\uff1aensureRows\u6ca1\u6709\u6b63\u786e\u7684\u89e3\u6790\u6570\u636e\uff0c\u5bfc\u81f4\u5d29\u6e83\u3002KTHML\u89e3\u6790\u5668\u8bd5\u56fe\u5c06\u5185\u90e8\u6570\u7ec4\u7684\u5927\u5c0f\u8c03\u6574\u4e3arowspan\u503c\u6240\u663e\u793a\u7684\u5355\u5143\u6570\u3002\u5982\u679c\u8fd9\u4e2a\u503c\u5f88\u5927\u7684\u8bdd\uff0c\u5c31\u65e0\u6cd5\u8c03\u6574\u6570\u7ec4\uff0c\u5e94\u7528\u7a0b\u5e8f\u5c31\u4f1a\u7ec8\u6b62. \n\u4e0b\u9762\u663e\u793a\u7684\u662fgdb\u4e2dOS X 10.4.3\u4e0a\u4f7f\u7528Safari\u6240\u89e6\u53d1\u7684\u5d29\u6e83\uff1a\nProgram received signal SIGABRT\uff0c Aborted. \n0x9004716c in kill ()\n(gdb) bt\n\uff030 0x9004716c in kill ()\n\uff031 0x90128b98 in abort ()\n\uff032 0x95dcd974 in khtml\uff1a\uff1asYSMALLOc () \uff1c(=-- Is called because of sYSMALLOc(1234567890)\n\uff033 0x95dce1a4 in khtml\uff1a\uff1amain_thread_realloc ()\n\uff034 0x95bc0d64 in KWQArrayImpl\uff1a\uff1aresize ()\n\uff035 0x95c05428 in khtml\uff1a\uff1aRenderTableSection\uff1a\uff1aensureRows ()\n\uff036 0x95c0784c in khtml\uff1a\uff1aRenderTableSection\uff1a\uff1aaddCell ()\n\uff037 0x95c076ac in khtml\uff1a\uff1aRenderTableRow\uff1a\uff1aaddChild ()\n\uff038 0x95bcb2d8 in DOM\uff1a\uff1aNodeImpl\uff1a\uff1acreateRendererIfNeeded ()\n\uff039 0x95bcb1c4 in DOM\uff1a\uff1aElementImpl\uff1a\uff1aattach ()\n\uff0310 0x95bca254 in KHTMLParser\uff1a\uff1ainsertNode ()\n\uff0311 0x95bcadd8 in KHTMLParser\uff1a\uff1ainsertNode ()\n\uff0312 0x95bcadd8 in KHTMLParser\uff1a\uff1ainsertNode ()\n\uff0313 0x95bc83fc in KHTMLParser\uff1a\uff1aparseToken ()\n\uff0314 0x95bc54a4 in khtml\uff1a\uff1aHTMLTokenizer\uff1a\uff1aprocessToken ()\n\uff0315 0x95bc6e08 in khtml\uff1a\uff1aHTMLTokenizer\uff1a\uff1aparseTag ()\n\uff0316 0x95bc4d24 in khtml\uff1a\uff1aHTMLTokenizer\uff1a\uff1awrite ()\n\uff0317 0x95bc038c in KHTMLPart\uff1a\uff1awrite ()\n\uff0318 0x959b510c in -[WebDataSource(WebPrivate) _commitLoadWithData\uff1a] ()\n\uff0319 0x9598165c in -[WebMainResourceClient addData\uff1a] ()\n\uff0320 0x95981588 in -[WebBaseResourceHandleDelegate didReceiveData\uff1alengthReceived\uff1a] ()\n\uff0321 0x959db930 in -[WebMainResourceClient didReceiveData\uff1alengthReceived\uff1a] ()\n\uff0322 0x95981524 in -[WebBaseResourceHandleDelegate connection\uff1adidReceiveData\uff1alengthReceived\uff1a] ()\n\uff0323 0x92910a64 in -[NSURLConnection(NSURLConnectionInternal) _sendDidReceiveDataCallback] ()\n\uff0324 0x9290ef04 in -[NSURLConnection(NSURLConnectionInternal) _sendCallbacks] ()\n\uff0325 0x9290eca0 in _sendCallbacks ()\n\uff0326 0x9075db20 in __CFRunLoopDoSources0 ()\n\uff0327 0x9075cf98 in __CFRunLoopRun ()\n\uff0328 0x9075ca18 in CFRunLoopRunSpecific ()\n\uff0329 0x931861e0 in RunCurrentEventLoopInMode ()\n\uff0330 0x931857ec in ReceiveNextEventCommon ()\n\uff0331 0x931856e0 in BlockUntilNextEventMatchingListInMode ()\n\uff0332 0x93683904 in _DPSNextEvent ()\n\uff0333 0x936835c8 in -[NSApplication nextEventMatchingMask\uff1auntilDate\uff1ainMode\uff1adequeue\uff1a] ()\n\uff0334 0x00007910 in ?? ()\n\uff0335 0x9367fb0c in -[NSApplication run] ()\n\uff0336 0x93770618 in NSApplicationMain ()\n\uff0337 0x0000307c in ?? ()\n\uff0338 0x00057758 in ?? (). \nSuccessful exploitation may cause an application employing KHTMLParser to crash. When running a specially crafted .html file, khtml::RenderTableSection::ensureRows did not parse the data correctly, causing a crash. The KTHML parser attempts to resize the internal array to the number of cells indicated by the rowspan value. If this value is large, the array cannot be resized and the application will terminate. \n-----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\n\n\n National Cyber Alert System\n\n Technical Cyber Security Alert TA06-053A\n\n\nApple Mac OS X Safari Command Execution Vulnerability\n\n Original release date: February 22, 2006\n Last revised: --\n Source: US-CERT\n\n\nSystems Affected\n\n Apple Safari running on Mac OS X\n\n\nOverview\n\n A file type determination vulnerability in Apple Safari could allow a\n remote attacker to execute arbitrary commands on a vulnerable system. \n\n\nI. \n\n Details are available in the following Vulnerability Note:\n\n VU#999708 - Apple Safari may automatically execute arbitrary shell\n commands\n\n\nII. If the user is logged\n on with administrative privileges, the attacker could take complete\n control of an affected system. \n\n\nIII. Solution\n\n Since there is no known patch for this issue at this time, US-CERT is\n recommending a workaround. References\n\n * US-CERT Vulnerability Note VU#999708 -\n \u003chttp://www.kb.cert.org/vuls/id/999708\u003e\n\n * Securing Your Web Browser -\n \u003chttp://www.us-cert.gov/reading_room/securing_browser/#sgeneral\u003e\n\n * Apple - Mac OS X - Safari RSS -\n \u003chttp://www.apple.com/macosx/features/safari/\u003e\n\n\n ____________________________________________________________________\n\n The most recent version of this document can be found at:\n\n \u003chttp://www.us-cert.gov/cas/techalerts/TA06-053A.html\u003e\n ____________________________________________________________________\n\n Feedback can be directed to US-CERT Technical Staff. Please send\n email to \u003ccert@cert.org\u003e with \"TA06-053A Feedback VU#999708\" in the\n subject. \n ____________________________________________________________________\n\n For instructions on subscribing to or unsubscribing from this\n mailing list, visit \u003chttp://www.us-cert.gov/cas/signup.html\u003e. \n ____________________________________________________________________\n\n Produced 2006 by US-CERT, a government organization. \n\n Terms of use:\n\n \u003chttp://www.us-cert.gov/legal.html\u003e\n ____________________________________________________________________\n\n\nRevision History\n\n Feb 22, 2006: Initial release\n\n\n \n\n\n\n\n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1.2.1 (GNU/Linux)\n\niQEVAwUBQ/zKN30pj593lg50AQJgoQf/ZajorZz/6quzA40dc8cLxIBT70xcClH5\nCKDN5nMXl1mRYYkDPF07GbcWL3lWarW5Hif0OiZfazaGNC3p9v4ZxDx/dW/ZmsYo\neDznsNWNphKB6yBSIbOUSfGyh/I7pQlG3qxXRWDTA9nVK12KIkvAAoPTgBe40obu\n+x58gK5/ib4d+dEZ8F9SbO7/syYtcAzfzS2HrBYhG1lWWLYTaNC3hyI2nXF5lNV/\nymwaPv0ivAB9rpalus+KkajjiV5+J08dj+1JwgwcSpvuNMQ5c/8RCIILP+1bR+CL\nlScvGuSRYk4S0QI9nmCDvwD52sluiwp2VO1atTQ1zcgpwhvLRGo3DQ==\n=P2/3\n-----END PGP SIGNATURE-----\n. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\nAPPLE-SA-2006-03-01 Security Update 2006-001\n\nSecurity Update 2006-001 is now available and addresses the following\nissues:\n\napache_mod_php\nCVE-ID: CVE-2005-3319, CVE-2005-3353, CVE-2005-3391, CVE-2005-3392\nAvailable for: Mac OS X v10.3.9, Mac OS X Server v10.3.9, Mac OS X\nv10.4.5, Mac OS X Server v10.4.5\nImpact: Multiple security issues in PHP 4.4\nDescription: PHP 4.4.1 fixes several security issues in the Apache\nmodule and scripting environment. Details of the fixes are\navailable via the PHP web site (www.php.net). This framework is vulnerable to a directory\ntraversal attack that can allow archived files to be unpacked into\narbitrary locations that are writable by the current user. This\nupdate addresses the issue by properly sanitizing those paths. \nCredit to Stephane Kardas of CERTA for reporting this issue. This could lead to privilege elevation. This update\naddresses the issue by anticipating a hostile environment and by\ncreating temporary files securely. Credit to Ilja van Sprundel of\nSuresec LTD, vade79, and iDefense (idefense.com) for reporting this\nissue. This update secures the method in\nwhich a FileVault image is created. This update addresses the issues by\ncorrectly handling the conditions that may cause crashes. Credit to\nOUSPG from the University of Oulu, NISCC, and CERT-FI for\ncoordinating and reporting this issue. This update addresses the issue by\ncorrectly handling these memory requests. Credit to Neil Archibald of\nSuresec LTD for reporting this issue. \n\nMail\nCVE-ID: CVE-2006-0395\nAvailable for: Mac OS X v10.4.5, Mac OS X Server v10.4.5\nImpact: Download Validation fails to warn about unsafe file types\nDescription: In Mac OS X v10.4 Tiger, when an email attachment is\ndouble-clicked in Mail, Download Validation is used to warn the\nuser if the file type is not \"safe\". Certain techniques can be used\nto disguise the file\u0027s type so that Download Validation is\nbypassed. This update addresses the issue by presenting Download\nValidation with the entire file, providing more information for\nDownload Validation to detect unknown or unsafe file types in\nattachments. \n\nperl\nCVE-ID: CVE-2005-4217\nAvailable for: Mac OS X v10.3.9, Mac OS X Server v10.3.9\nImpact: Perl programs may fail to drop privileges\nDescription: When a perl program running as root attempts to switch\nto another user ID, the operation may fail without notification to\nthe program. This may cause a program to continue to run with root\nprivileges, assuming they have been dropped. This can cause\nsecurity issues in third-party tools. This update addresses the\nissue by preventing such applications from continuing if the\noperation fails. Credit to Jason Self for reporting this issue. \n\nrsync\nCVE-ID: CVE-2005-3712\nAvailable for: Mac OS X v10.4.5, Mac OS X Server v10.4.5\nImpact: Authenticated users may cause an rsync server to crash or\nexecute arbitrary code\nDescription: A heap-based buffer overflow may be triggered when the\nrsync server is used with the flag that allows extended attributes\nto be transferred. It may be possible for a malicious user with\naccess to an rsync server to cause denial of service or code\nexecution. This update addresses the problem by ensuring that the\ndestination buffer is large enough to hold the extended attributes. Credit\nto Jan-Derk Bakker for reporting this issue. This update\naddresses the issue by preventing the condition causing the\noverflow. Credit to Suresec LTD for reporting this issue. This update addresses the issue by performing additional\nbounds checking. An issue involving HTTP\nredirection can cause the browser to access a local file, bypassing\ncertain restrictions. This update addresses the issue by preventing\ncross-domain HTTP redirects. When the \"Open `safe\u0027 files after downloading\" option\nis enabled in Safari\u0027s General preferences, visiting a malicious\nweb site may result in the automatic download and execution of such\na file. A proof-of-concept has been detected on public web sites\nthat demonstrates the automatic execution of shell scripts. \n\nSyndication\nCVE-ID: CVE-2006-0389\nAvailable for: Mac OS X v10.4.5, Mac OS X Server v10.4.5\nImpact: Subscriptions to malicious RSS content can lead to\ncross-site scripting\nDescription: Syndication (Safari RSS) may allow JavaScript code\nembedded in feeds to run within the context of the RSS reader\ndocument, allowing malicious feeds to circumvent Safari\u0027s security\nmodel. This update addresses the issue by properly removing\nJavaScript code from feeds. \n\nThe following security enhancements are also included in this update:\n\nFileVault: AES-128 encrypted FileVault disk images are now created\nwith more restrictive operating system permissions. Credit to Eric\nHall of DarkArt Consulting Services for reporting this issue. \n\niChat: A malicious application named Leap.A that attempts to\npropagate using iChat has been detected. \n\nUsers should use caution when opening files that are obtained from\nthe network. Further information is available via:\nhttp://docs.info.apple.com/article.html?artnum=108009\n\nSecurity Update 2006-001 may be obtained from the Software Update\npane in System Preferences, or Apple\u0027s Software Downloads web site:\nhttp://www.apple.com/support/downloads/\n\nFor Mac OS X v10.4.5 (PowerPC) and Mac OS X Server v10.4.5\nThe download file is named: \"SecUpd2006-001Ti.dmg\"\nIts SHA-1 digest is: 999b73a54951b4e0a7f873fecf75f92840e8b439\n\nFor Mac OS X v10.4.5 (Intel)\nThe download file is named: \"SecUpd2006-001Intel.dmg\"\nIts SHA-1 digest is: 473f94264876fa49fa15a8b6bb4bc30956502ad5\n\nFor Mac OS X v10.3.9\nThe download file is named: \"SecUpd2006-001Pan.dmg\"\nIts SHA-1 digest is: b6a000d451a1b1696726ff60142fc3da08042433\n\nFor Mac OS X Server v10.3.9\nThe download file is named: \"SecUpdSrvr2006-001Pan.dmg\"\nIts SHA-1 digest is: 2299380d72a61eadcbd0a5c6f46c924600ff5a9c\n\nInformation will also be posted to the Apple Product Security\nweb site:\nhttp://docs.info.apple.com/article.html?artnum=61798\n\nThis message is signed with Apple\u0027s Product Security PGP key,\nand details are available at:\nhttp://www.apple.com/support/security/pgp/\n\n-----BEGIN PGP SIGNATURE-----\nVersion: PGP Desktop 9.0.5 (Build 5050)\n\niQEVAwUBRAYYVoHaV5ucd/HdAQJQWggApQmizj2t3+/87Fqun66/HCEkFt2YhUoe\ncmel0/KwJhWrk+LV+CYvixbDvKuGIjP8CWB9/s78YN93pOI5WcfyTKd07rEQYkT4\ni8KPrM9QjdvgIjKd6O/VAOkzBc3DqV7KNVR2Hewa3jOigTm7Yxil9o/nZt1TLxAI\n9TN0uduc13WHC8WE2N41I8MQ+VdGTX3ANZkfgR90lua4A2E1ab9kCN2qbg+E7Cus\nSkwsKp0qSH7bl8v0/R6c1hsYG0T1RwSWU6arAEliqzrrIbCm0Yxtgwp/CYFWC46j\nTQNCcppNgcr/pVPojACy8WFtQ3wEb6rJ4ZjH1C5nOem2EoCBh10WFw==\n=1Ww0\n-----END PGP SIGNATURE-----\n",
"sources": [
{
"db": "NVD",
"id": "CVE-2005-4504"
},
{
"db": "CERT/CC",
"id": "VU#351217"
},
{
"db": "CERT/CC",
"id": "VU#176732"
},
{
"db": "JVNDB",
"id": "JVNDB-2006-000880"
},
{
"db": "CNNVD",
"id": "CNNVD-200512-545"
},
{
"db": "BID",
"id": "16045"
},
{
"db": "VULHUB",
"id": "VHN-15712"
},
{
"db": "VULMON",
"id": "CVE-2005-4504"
},
{
"db": "PACKETSTORM",
"id": "44162"
},
{
"db": "PACKETSTORM",
"id": "44321"
}
],
"trust": 4.23
},
"exploit_availability": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/exploit_availability#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"reference": "https://www.scap.org.cn/vuln/vhn-15712",
"trust": 0.1,
"type": "unknown"
},
{
"reference": "https://vulmon.com/exploitdetails?qidtp=exploitdb\u0026qid=26971",
"trust": 0.1,
"type": "exploit"
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-15712"
},
{
"db": "VULMON",
"id": "CVE-2005-4504"
}
]
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "SECUNIA",
"id": "19064",
"trust": 3.4
},
{
"db": "CERT/CC",
"id": "VU#351217",
"trust": 3.4
},
{
"db": "NVD",
"id": "CVE-2005-4504",
"trust": 3.0
},
{
"db": "SECUNIA",
"id": "18220",
"trust": 2.6
},
{
"db": "USCERT",
"id": "TA06-062A",
"trust": 2.6
},
{
"db": "BID",
"id": "16045",
"trust": 2.1
},
{
"db": "BID",
"id": "16907",
"trust": 1.8
},
{
"db": "VUPEN",
"id": "ADV-2005-3058",
"trust": 1.8
},
{
"db": "VUPEN",
"id": "ADV-2006-0791",
"trust": 1.8
},
{
"db": "CERT/CC",
"id": "VU#176732",
"trust": 1.6
},
{
"db": "CERT/CC",
"id": "VU#999708",
"trust": 0.9
},
{
"db": "JVNDB",
"id": "JVNDB-2006-000880",
"trust": 0.8
},
{
"db": "CNNVD",
"id": "CNNVD-200512-545",
"trust": 0.7
},
{
"db": "XF",
"id": "23819",
"trust": 0.6
},
{
"db": "CERT/CC",
"id": "TA06-062A",
"trust": 0.6
},
{
"db": "APPLE",
"id": "APPLE-SA-2006-03-01",
"trust": 0.6
},
{
"db": "EXPLOIT-DB",
"id": "26971",
"trust": 0.2
},
{
"db": "SEEBUG",
"id": "SSVID-80594",
"trust": 0.1
},
{
"db": "VULHUB",
"id": "VHN-15712",
"trust": 0.1
},
{
"db": "VULMON",
"id": "CVE-2005-4504",
"trust": 0.1
},
{
"db": "USCERT",
"id": "TA06-053A",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "44162",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "44321",
"trust": 0.1
}
],
"sources": [
{
"db": "CERT/CC",
"id": "VU#351217"
},
{
"db": "CERT/CC",
"id": "VU#176732"
},
{
"db": "VULHUB",
"id": "VHN-15712"
},
{
"db": "VULMON",
"id": "CVE-2005-4504"
},
{
"db": "BID",
"id": "16045"
},
{
"db": "JVNDB",
"id": "JVNDB-2006-000880"
},
{
"db": "PACKETSTORM",
"id": "44162"
},
{
"db": "PACKETSTORM",
"id": "44321"
},
{
"db": "CNNVD",
"id": "CNNVD-200512-545"
},
{
"db": "NVD",
"id": "CVE-2005-4504"
}
]
},
"id": "VAR-200512-0749",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "VULHUB",
"id": "VHN-15712"
}
],
"trust": 0.01
},
"last_update_date": "2024-11-29T20:50:56.979000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "TA23971",
"trust": 0.8,
"url": "http://support.apple.com/kb/TA23971?viewlocale=ja_JP"
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2006-000880"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "NVD-CWE-Other",
"trust": 1.0
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2005-4504"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 3.7,
"url": "http://docs.info.apple.com/article.html?artnum=303382"
},
{
"trust": 2.7,
"url": "http://www.kb.cert.org/vuls/id/351217"
},
{
"trust": 2.6,
"url": "http://security-protocols.com/advisory/sp-x22-advisory.txt"
},
{
"trust": 1.8,
"url": "http://lists.apple.com/archives/security-announce/2006/mar/msg00000.html"
},
{
"trust": 1.8,
"url": "http://www.securityfocus.com/bid/16045"
},
{
"trust": 1.8,
"url": "http://www.securityfocus.com/bid/16907"
},
{
"trust": 1.8,
"url": "http://www.us-cert.gov/cas/techalerts/ta06-062a.html"
},
{
"trust": 1.8,
"url": "http://docs.info.apple.com/jarticle.html?artnum=303382-en"
},
{
"trust": 1.8,
"url": "http://secunia.com/advisories/18220"
},
{
"trust": 1.8,
"url": "http://secunia.com/advisories/19064"
},
{
"trust": 1.6,
"url": "http://secunia.com/advisories/19064/"
},
{
"trust": 1.2,
"url": "http://www.vupen.com/english/advisories/2005/3058"
},
{
"trust": 1.2,
"url": "http://www.vupen.com/english/advisories/2006/0791"
},
{
"trust": 1.2,
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/23819"
},
{
"trust": 0.8,
"url": "http://secunia.com/advisories/18220/"
},
{
"trust": 0.8,
"url": "http://webkit.opendarwin.org/"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2005-4504"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2006-0387"
},
{
"trust": 0.8,
"url": "http://jvn.jp/cert/jvnta06-062a/"
},
{
"trust": 0.8,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2005-4504"
},
{
"trust": 0.8,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2006-0387"
},
{
"trust": 0.8,
"url": "http://www.kb.cert.org/vuls/id/176732"
},
{
"trust": 0.8,
"url": "http://www.kb.cert.org/vuls/id/999708"
},
{
"trust": 0.6,
"url": "http://xforce.iss.net/xforce/xfdb/23819"
},
{
"trust": 0.6,
"url": "http://www.frsirt.com/english/advisories/2006/0791"
},
{
"trust": 0.6,
"url": "http://www.frsirt.com/english/advisories/2005/3058"
},
{
"trust": 0.3,
"url": "http://www.security-protocols.com/advisory/sp-x22-advisory.txt"
},
{
"trust": 0.3,
"url": "http://www.apple.com/macosx/"
},
{
"trust": 0.1,
"url": "https://cwe.mitre.org/data/definitions/.html"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov"
},
{
"trust": 0.1,
"url": "https://www.exploit-db.com/exploits/26971/"
},
{
"trust": 0.1,
"url": "http://www.kb.cert.org/vuls/id/999708\u003e"
},
{
"trust": 0.1,
"url": "http://www.us-cert.gov/cas/techalerts/ta06-053a.html\u003e"
},
{
"trust": 0.1,
"url": "http://www.apple.com/macosx/features/safari/\u003e"
},
{
"trust": 0.1,
"url": "http://www.us-cert.gov/cas/signup.html\u003e."
},
{
"trust": 0.1,
"url": "http://www.us-cert.gov/reading_room/securing_browser/#sgeneral\u003e"
},
{
"trust": 0.1,
"url": "http://www.us-cert.gov/legal.html\u003e"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2005-2713"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2006-0387"
},
{
"trust": 0.1,
"url": "http://docs.info.apple.com/article.html?artnum=61798"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2005-4504"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2005-3712"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2005-2714"
},
{
"trust": 0.1,
"url": "http://www.apple.com/support/security/pgp/"
},
{
"trust": 0.1,
"url": "http://www.apple.com/support/downloads/"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2006-0394"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2005-3391"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2006-0395"
},
{
"trust": 0.1,
"url": "https://www.php.net)."
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2005-4217"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2006-0391"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2005-3319"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2006-0383"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2006-0384"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2005-3353"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2006-0388"
},
{
"trust": 0.1,
"url": "http://docs.info.apple.com/article.html?artnum=108009"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2005-3706"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2006-0386"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2005-3392"
}
],
"sources": [
{
"db": "CERT/CC",
"id": "VU#351217"
},
{
"db": "CERT/CC",
"id": "VU#176732"
},
{
"db": "VULHUB",
"id": "VHN-15712"
},
{
"db": "VULMON",
"id": "CVE-2005-4504"
},
{
"db": "BID",
"id": "16045"
},
{
"db": "JVNDB",
"id": "JVNDB-2006-000880"
},
{
"db": "PACKETSTORM",
"id": "44162"
},
{
"db": "PACKETSTORM",
"id": "44321"
},
{
"db": "CNNVD",
"id": "CNNVD-200512-545"
},
{
"db": "NVD",
"id": "CVE-2005-4504"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "CERT/CC",
"id": "VU#351217"
},
{
"db": "CERT/CC",
"id": "VU#176732"
},
{
"db": "VULHUB",
"id": "VHN-15712"
},
{
"db": "VULMON",
"id": "CVE-2005-4504"
},
{
"db": "BID",
"id": "16045"
},
{
"db": "JVNDB",
"id": "JVNDB-2006-000880"
},
{
"db": "PACKETSTORM",
"id": "44162"
},
{
"db": "PACKETSTORM",
"id": "44321"
},
{
"db": "CNNVD",
"id": "CNNVD-200512-545"
},
{
"db": "NVD",
"id": "CVE-2005-4504"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2006-03-03T00:00:00",
"db": "CERT/CC",
"id": "VU#351217"
},
{
"date": "2006-03-03T00:00:00",
"db": "CERT/CC",
"id": "VU#176732"
},
{
"date": "2005-12-22T00:00:00",
"db": "VULHUB",
"id": "VHN-15712"
},
{
"date": "2005-12-22T00:00:00",
"db": "VULMON",
"id": "CVE-2005-4504"
},
{
"date": "2005-12-22T00:00:00",
"db": "BID",
"id": "16045"
},
{
"date": "2009-04-03T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2006-000880"
},
{
"date": "2006-02-26T03:08:24",
"db": "PACKETSTORM",
"id": "44162"
},
{
"date": "2006-03-03T08:09:05",
"db": "PACKETSTORM",
"id": "44321"
},
{
"date": "2005-11-14T00:00:00",
"db": "CNNVD",
"id": "CNNVD-200512-545"
},
{
"date": "2005-12-22T23:03:00",
"db": "NVD",
"id": "CVE-2005-4504"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2006-03-06T00:00:00",
"db": "CERT/CC",
"id": "VU#351217"
},
{
"date": "2006-03-03T00:00:00",
"db": "CERT/CC",
"id": "VU#176732"
},
{
"date": "2017-07-20T00:00:00",
"db": "VULHUB",
"id": "VHN-15712"
},
{
"date": "2017-07-20T00:00:00",
"db": "VULMON",
"id": "CVE-2005-4504"
},
{
"date": "2015-05-12T19:51:00",
"db": "BID",
"id": "16045"
},
{
"date": "2009-04-03T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2006-000880"
},
{
"date": "2005-12-27T00:00:00",
"db": "CNNVD",
"id": "CNNVD-200512-545"
},
{
"date": "2024-11-21T00:04:24.860000",
"db": "NVD",
"id": "CVE-2005-4504"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "PACKETSTORM",
"id": "44162"
},
{
"db": "CNNVD",
"id": "CNNVD-200512-545"
}
],
"trust": 0.7
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Apple Safari WebKit component vulnerable to buffer overflow",
"sources": [
{
"db": "CERT/CC",
"id": "VU#351217"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "lack of information",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-200512-545"
}
],
"trust": 0.6
}
}
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.