CVE-2010-0055
published 2010-03-30CVE-2010-0055: xar in Apple Mac OS X 10.5.8 does not properly validate package signatures, which allows attackers to have an unspecified impact via a modified package.
critical10CVSS 3.1
AVNACLAuNCCICAC
xar in Apple Mac OS X 10.5.8 does not properly validate package signatures, which allows attackers to have an unspecified impact via a modified package.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | mac_os_x | — | — |
| apple | mac_os_x_server | — | — |
| debian | xar | < xar 1.8.0.498-1 (forky) | xar 1.8.0.498-1 (forky) |
| xar_project | xar | >= 0 < 1.8.0.498-1 | 1.8.0.498-1 |
| xar_project | xar | >= 0 < 1.8.0.498-1 | 1.8.0.498-1 |
CVSS provenance
nvd10.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
osv10.0CRITICAL