CVE-2006-4403 — Apple MAC OS X vulnerability

2 documents2 sources

Severity

4.0MEDIUMNVD

EPSS

3.6%

top 12.19%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple MAC OS X

Timeline

PublishedNov 30

Latest updateMay 1

Description

The FTP server in Apple Mac OS X 10.4.8 and earlier, when FTP Access is enabled, will crash when a login failure occurs with a valid user name, which allows remote attackers to cause a denial of service (crash) and enumerate valid usernames.

CVSS vector

AV:N/AC:H/C:P/I:N/A:PExploitability: 4.9 | Impact: 4.9

Affected Packages1 packages

▶NVDapple/mac_os_x10.4.8

🔴Vulnerability Details

GHSA

GHSA-46x7-8pwm-5h5x: The FTP server in Apple Mac OS X 10↗2022-05-01

▶