Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0485

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2004-0485
Last Modified 10 Sep 2008 03:26:37
Published 07 Jul 2004 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0485

Summary

The default protocol helper for the disk: URI on Mac OS X 10.3.3 and 10.2.8 allows remote attackers to write arbitrary files by causing a disk image file (.dmg) to be mounted as a disk volume.

Vulnerable Systems

Operating System

  • Apple Mac Os X 10.2.8

  • Apple Mac Os X 10.3.3


References

CERT-VN - VU#210606

SECUNIA - 11622

XF - macos-runscript-code-execution(16166)

APPLE - APPLE-SA-2004-05-21

MISC - http://fundisom.com/owned/warning

APPLE - APPLE-SA-2004-05-28


Last Updated: 27 May 2016 10:38:37