CVE-2008-1571Path Traversal in Apple MAC OS X

CWE-22Path Traversal4 documents4 sources
Severity
5.0MEDIUMNVD
EPSS
0.6%
top 29.17%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Apple MAC OS XApple MAC OS X Server
Timeline
PublishedJun 2
Latest updateMay 1

Description

Directory traversal vulnerability in the embedded web server in Image Capture in Apple Mac OS X before 10.5 allows remote attackers to read arbitrary files via directory traversal sequences in the URI.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

NVDapple/mac_os_x10.4.11

Patches

Patch: securitytracker.comPatch: securitytracker.com

🔴Vulnerability Details

2
GHSA
GHSA-wqp9-hqgq-37f9: Directory traversal vulnerability in the embedded web server in Image Capture in Apple Mac OS X before 102022-05-01
CVEList
CVE-2008-1571: Directory traversal vulnerability in the embedded web server in Image Capture in Apple Mac OS X before 102008-06-02

💥Exploits & PoCs

1
Exploit-DB
Web Wiz Guestbook 8.21 - Database Disclosure2008-12-16
CVE-2008-1571 — Path Traversal in Apple MAC OS X | cvebase