4.6

CVE-2007-0739

The Login Window in Apple Mac OS X 10.4 through 10.4.9 displays the software update window beneath the loginwindow authentication dialog in certain circumstances related to running scheduled tasks, which allows local users to bypass authentication controls.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
ApplemacOS X Version10.4
ApplemacOS X Version10.4.1
ApplemacOS X Version10.4.2
ApplemacOS X Version10.4.3
ApplemacOS X Version10.4.4
ApplemacOS X Version10.4.5
ApplemacOS X Version10.4.6
ApplemacOS X Version10.4.7
ApplemacOS X Version10.4.8
ApplemacOS X Version10.4.9
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.4% 0.314
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.6 3.9 6.4
AV:L/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://docs.info.apple.com/article.html?artnum=305391
http://lists.apple.com/archives/Security-announce/2007/Apr/msg00001.html
http://secunia.com/advisories/24966
http://www.us-cert.gov/cas/techalerts/TA07-109A.html
US Government Resource
http://www.vupen.com/english/advisories/2007/1470
http://www.securityfocus.com/bid/23569
Patch
http://www.securitytracker.com/id?1017939
http://www.osvdb.org/34864