7.2

CVE-2007-0744

SMB in Apple Mac OS X 10.3.9 through 10.4.9 does not properly clean the environment when executing commands, which allows local users to gain privileges by setting unspecified environment variables.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
ApplemacOS X Version10.3.9
ApplemacOS X Version10.4
ApplemacOS X Version10.4.1
ApplemacOS X Version10.4.2
ApplemacOS X Version10.4.3
ApplemacOS X Version10.4.4
ApplemacOS X Version10.4.5
ApplemacOS X Version10.4.6
ApplemacOS X Version10.4.7
ApplemacOS X Version10.4.8
ApplemacOS X Version10.4.9
ApplemacOS X Server Version10.3.9
ApplemacOS X Server Version10.4
ApplemacOS X Server Version10.4.1
ApplemacOS X Server Version10.4.2
ApplemacOS X Server Version10.4.3
ApplemacOS X Server Version10.4.4
ApplemacOS X Server Version10.4.5
ApplemacOS X Server Version10.4.6
ApplemacOS X Server Version10.4.7
ApplemacOS X Server Version10.4.8
ApplemacOS X Server Version10.4.9
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.38% 0.296
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.2 3.9 10
AV:L/AC:L/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://docs.info.apple.com/article.html?artnum=305391
http://lists.apple.com/archives/Security-announce/2007/Apr/msg00001.html
http://secunia.com/advisories/24966
http://www.us-cert.gov/cas/techalerts/TA07-109A.html
US Government Resource
http://www.vupen.com/english/advisories/2007/1470
http://www.securityfocus.com/bid/23569
Patch
http://www.osvdb.org/34868