Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5862

Overview

Vulnerability Score 9.4 9.4
CVE Id CVE-2007-5862
Last Modified 07 Mar 2011 10:01:25
Published 18 Dec 2007 03:46:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-5862

Summary

Java in Mac OS X 10.4 through 10.4.11 allows remote attackers to bypass Keychain access controls and add or delete arbitrary Keychain items via a crafted Java applet.

Vulnerable Systems

Operating System

  • Apple Mac Os X 10.4

  • Apple Mac Os X 10.4.1

  • Apple Mac Os X 10.4.10

  • Apple Mac Os X 10.4.11

  • Apple Mac Os X 10.4.2

  • Apple Mac Os X 10.4.3

  • Apple Mac Os X 10.4.4

  • Apple Mac Os X 10.4.5

  • Apple Mac Os X 10.4.6

  • Apple Mac Os X 10.4.7

  • Apple Mac Os X 10.4.8

  • Apple Mac Os X 10.4.9


References

BID - 26877

SECUNIA - 28115

VUPEN - ADV-2007-4224

APPLE - APPLE-SA-2007-12-14

MISC - http://docs.info.apple.com/article.html?artnum=307177

Related Patches

Apple 2007-12-13 Java for Mac OS X 10.4 Release 6


Last Updated: 27 May 2016 10:46:18