CVE-2006-0391 — Path Traversal in Apple MAC OS X

2 documents2 sources

Severity

1.7LOWNVD

EPSS

0.6%

top 29.72%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple MAC OS X

Timeline

PublishedMar 3

Latest updateMay 1

Description

Directory traversal vulnerability in the BOM framework in Mac OS X 10.x before 10.3.9 and 10.4 before 10.4.5 allows user-assisted attackers to overwrite or create arbitrary files via an archive that is handled by BOMArchiveHelper.

CVSS vector

AV:L/AC:L/C:N/I:P/A:NExploitability: 3.1 | Impact: 2.9

Affected Packages1 packages

▶NVDapple/mac_os_x12 versions+11

Patches

Patch: lists.apple.com ↗Patch: www.idefense.com ↗Patch: lists.apple.com ↗

🔴Vulnerability Details

GHSA

GHSA-8rvr-486v-q4j4: Directory traversal vulnerability in the BOM framework in Mac OS X 10↗2022-05-01

▶