PT-2005-3415 · Apple · Safari

Published

2005-08-19

Updated

2008-09-05

CVE-2005-2516

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Safari versions 10.3.9 through 10.4.2

Description The issue concerns Safari's handling of Rich Text Format (RTF) files, allowing remote attackers to execute arbitrary commands by directly accessing URLs without normal security checks.

Recommendations For versions 10.3.9 through 10.4.2, consider disabling the rendering of RTF files in Safari until a patch is available. Restrict access to potentially malicious RTF files to minimize the risk of exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-2516

Affected Products

Safari

PT-2005-3415 · Apple · Safari

CVE-2005-2516

Related Identifiers

Affected Products

References · 5