Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1444

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2006-1444
Last Modified 07 Mar 2011 09:33:06
Published 12 May 2006 05:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2006-1444

Summary

CoreGraphics in Apple Mac OS X 10.4.6, when "Enable access for assistive devices" is on, allows an application to bypass restrictions for secure event input and read certain events from other applications in the same window session by using Quartz Event Services.

Vulnerable Systems

Operating System

  • Apple Mac Os X 10.4.6


References

CERT - TA06-132A

APPLE - APPLE-SA-2006-05-11

VUPEN - ADV-2006-1779

XF - macos-coregraphics-quartz-security-bypass(26409)

BID - 17951

OSVDB - 25588

SECTRACK - 1016079

SECUNIA - 20077

Related Patches

Apple 2006-05-11 Security Update 2006-003 Mac OS X 10.4.6 Client (PPC)

Apple 2006-05-11 Security Update 2006-003 Mac OS X 10.4.6 Client (Intel)

Apple 2006-05-11 Security Update 2006-003 (10.4.6 Server)


Last Updated: 27 May 2016 10:42:02