Vulnerabilities > CVE-2006-0391 - Multiple vulnerability in Apple Mac OS X Security Update 2006-001
Attack vector
LOCAL Attack complexity
LOW Privileges required
SINGLE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
Directory traversal vulnerability in the BOM framework in Mac OS X 10.x before 10.3.9 and 10.4 before 10.4.5 allows user-assisted attackers to overwrite or create arbitrary files via an archive that is handled by BOMArchiveHelper.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 12 |
Nessus
NASL family | MacOS X Local Security Checks |
NASL id | MACOSX_SECUPD2006-001.NASL |
description | The remote host is running Apple Mac OS X, but lacks Security Update 2006-001. This security update contains fixes for the following applications : apache_mod_php automount Bom Directory Services iChat IPSec LaunchServices LibSystem loginwindow Mail rsync Safari Syndication |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 20990 |
published | 2006-03-02 |
reporter | This script is Copyright (C) 2006-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/20990 |
title | Mac OS X Multiple Vulnerabilities (Security Update 2006-001) |
code |
|
References
- http://docs.info.apple.com/article.html?artnum=303382
- http://lists.apple.com/archives/security-announce/2006/Mar/msg00000.html
- http://secunia.com/advisories/19064
- http://www.idefense.com/intelligence/vulnerabilities/display.php?id=399
- http://www.osvdb.org/23641
- http://www.securityfocus.com/bid/16907
- http://www.us-cert.gov/cas/techalerts/TA06-062A.html
- http://www.vupen.com/english/advisories/2006/0791
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25023