Lucene search

MitreCVE-2006-4400

HistoryNov 30, 2006 - 4:28 p.m.

CVE-2006-4400

2006-11-3016:28:00

mitre

web.nvd.nist.gov

cve-2006-4400

buffer overflow

apple type services

ats server

mac os

nvd

CVSS2

5.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

AI Score

7.6

Confidence

Low

EPSS

0.012

Percentile

85.0%

JSON

Stack-based buffer overflow in the Apple Type Services (ATS) server in Mac OS 10.4.8 and earlier allow user-assisted attackers to execute arbitrary code via crafted font files.

Affected configurations

Nvd

Node

applemac_os_xRange≤10.4.8

VendorProductVersionCPE
applemac_os_x*cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
apple	mac_os_x	*	cpe:2.3:o:apple:mac_os_x::::::::

References

docs.info.apple.com/article.html?artnum=304829

lists.apple.com/archives/security-announce/2006/Nov/msg00001.html

secunia.com/advisories/23155

securitytracker.com/id?1017301

www.kb.cert.org/vuls/id/835936

www.osvdb.org/30737

www.securityfocus.com/bid/21335

www.us-cert.gov/cas/techalerts/TA06-333A.html

www.vupen.com/english/advisories/2006/4750

CVSS2

5.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

AI Score

7.6

Confidence

Low

EPSS

0.012

Percentile

85.0%

JSON

Related for CVE-2006-4400