Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-1723

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-1723
Last Modified 05 Sep 2008 04:49:54
Published 08 Jun 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-1723

Summary

LaunchServices in Apple Mac OS X 10.4.x up to 10.4.1 does not properly mark file extensions and MIME types as unsafe if an Apple Uniform Type Identifier (UTI) is not created when the type is added to the database of unsafe types, which could allow attackers to bypass intended restrictions.

Vulnerable Systems

Operating System

  • Apple Mac Os X Server 10.4

  • Apple Mac Os X Server 10.4.1


References

APPLE - APPLE-SA-2005-06-08

SECTRACK - 1014141


Last Updated: 27 May 2016 10:40:16