Vulnerabilities > CVE-2005-1723 - Unspecified vulnerability in Apple mac OS X Server 10.4/10.4.1
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
LaunchServices in Apple Mac OS X 10.4.x up to 10.4.1 does not properly mark file extensions and MIME types as unsafe if an Apple Uniform Type Identifier (UTI) is not created when the type is added to the database of unsafe types, which could allow attackers to bypass intended restrictions.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 2 |
Nessus
NASL family | MacOS X Local Security Checks |
NASL id | MACOSX_SECUPD2005-006.NASL |
description | The remote host is missing Security Update 2005-006. This security update contains security fixes for the following application : - AFP Server - Bluetooth - CoreGraphics - Folder Permissions - launchd - LaunchServices - NFS - PHP - VPN These programs have multiple vulnerabilities, some of which may lead to arbitrary code execution. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 18437 |
published | 2005-06-08 |
reporter | This script is Copyright (C) 2005-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/18437 |
title | Mac OS X Multiple Vulnerabilities (Security Update 2005-006) |
code |
|