PT-2007-6822 · Oracle+1 · Java+1
Publicado
2007-12-18
·
Atualizado
2011-03-08
·
CVE-2007-5862
CVSS v2.0
9.4
Alta
| Vetor | AV:N/AC:L/Au:N/C:C/I:C/A:N |
Name of the Vulnerable Software and Affected Versions
Mac OS X versions 10.4 through 10.4.11
Description
The issue allows remote attackers to bypass Keychain access controls, enabling them to add or delete arbitrary Keychain items. This is achieved through a crafted Java applet.
Recommendations
For Mac OS X versions 10.4 through 10.4.11, consider disabling Java applets until a patch is available to prevent exploitation.
Exploit
Correção
Improper Authentication
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Java
Macos X