Vulnerabilities > CVE-2006-0389 - Multiple vulnerability in Apple Mac OS X Security Update 2006-001
Attack vector
NETWORK Attack complexity
HIGH Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
Cross-site scripting (XSS) vulnerability in Syndication (Safari RSS) in Mac OS X 10.4 through 10.4.5 allows remote attackers to execute arbitrary JavaScript via unspecified vectors involving RSS feeds.
Vulnerable Configurations
Nessus
NASL family | MacOS X Local Security Checks |
NASL id | MACOSX_SECUPD2006-001.NASL |
description | The remote host is running Apple Mac OS X, but lacks Security Update 2006-001. This security update contains fixes for the following applications : apache_mod_php automount Bom Directory Services iChat IPSec LaunchServices LibSystem loginwindow Mail rsync Safari Syndication |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 20990 |
published | 2006-03-02 |
reporter | This script is Copyright (C) 2006-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/20990 |
title | Mac OS X Multiple Vulnerabilities (Security Update 2006-001) |
code |
|
References
- http://docs.info.apple.com/article.html?artnum=303382
- http://lists.apple.com/archives/security-announce/2006/Mar/msg00000.html
- http://secunia.com/advisories/19064
- http://www.osvdb.org/23649
- http://www.securityfocus.com/bid/16907
- http://www.us-cert.gov/cas/techalerts/TA06-062A.html
- http://www.vupen.com/english/advisories/2006/0791
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25040