Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5857

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2007-5857
Last Modified 07 Mar 2011 10:01:25
Published 19 Dec 2007 04:46:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-5857

Summary

Quick Look in Apple Mac OS X 10.5.1 does not prevent a movie from accessing URLs when the movie file is previewed or if an icon is created, which might allow remote attackers to obtain sensitive information via HREFTrack.

Vulnerable Systems

Operating System

  • Apple Mac Os X 10.5.1


References

CERT - TA07-352A

VUPEN - ADV-2007-4238

APPLE - APPLE-SA-2007-12-17

XF - macos-quicklook-unauthorized-access(39106)

BID - 26910

SECTRACK - 1019106

SECUNIA - 28136

CONFIRM - http://docs.info.apple.com/article.html?artnum=307179

Related Patches

Apple 2007-12-17 Security Update 2007-009 (10.5.1)

Apple 2007-12-21 Security Update 2007-009 1.1 (10.5.1)


Last Updated: 27 May 2016 10:46:18