CVE-2005-1723 — Apple MAC OS X Server vulnerability

2 documents2 sources

Severity

7.5HIGHNVD

EPSS

0.5%

top 35.55%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple MAC OS X Server

Timeline

PublishedJun 8

Latest updateMay 1

Description

LaunchServices in Apple Mac OS X 10.4.x up to 10.4.1 does not properly mark file extensions and MIME types as unsafe if an Apple Uniform Type Identifier (UTI) is not created when the type is added to the database of unsafe types, which could allow attackers to bypass intended restrictions.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

▶NVDapple/mac_os_x_server10.4, 10.4.1+1

Patches

Patch: lists.apple.com ↗Patch: lists.apple.com ↗

🔴Vulnerability Details

GHSA

GHSA-grxm-gmp3-rj8r: LaunchServices in Apple Mac OS X 10↗2022-05-01

▶