admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 09:11:28 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2007/CVE-2007-00xx/CVE-2007-0051.json
cad-safe-bot 9d8babeec3 Auto-Update: 2024-07-14T02:00:17.787041+00:00
2024-07-14 02:06:08 +00:00

134 lines
3.7 KiB
JSON
Raw Blame History

{
"id": "CVE-2007-0051",
"sourceIdentifier": "cve@mitre.org",
"published": "2007-01-04T18:28:00.000",
"lastModified": "2023-11-07T02:00:02.070",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Format string vulnerability in Apple iPhoto 6.0.5 (316), and other versions before 6.0.6, allows remote user-assisted attackers to execute arbitrary code via a crafted photocast with format string specifiers in the title of an RSS iPhoto feed."
},
{
"lang": "es",
"value": "Una vulnerabilidad de cadena de formato en Apple iPhoto versi\u00f3n 6.0.5 (316) y otras versiones anteriores a 6.0.6, permite a los atacantes remotos asistidos por el usuario ejecutar c\u00f3digo arbitrario por medio de una fotodifusi\u00f3n creada con especificadores de cadena de formato en el t\u00edtulo de una fuente de iPhoto RSS."
}
],
"metrics": {
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"accessVector": "NETWORK",
"accessComplexity": "MEDIUM",
"authentication": "NONE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 8.6,
"impactScore": 6.4,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": true,
"userInteractionRequired": true
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-134"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:apple:iphoto:6.0.5:*:*:*:*:*:*:*",
"matchCriteriaId": "9223CB61-E782-4C0F-9BDF-382C3004CED2"
}
]
}
]
}
],
"references": [
{
"url": "http://archives.neohapsis.com/archives/fulldisclosure/2007-01/0100.html",
"source": "cve@mitre.org"
},
{
"url": "http://docs.info.apple.com/article.html?artnum=305215",
"source": "cve@mitre.org"
},
{
"url": "http://lists.apple.com/archives/security-announce/2007/Mar//msg00003.html",
"source": "cve@mitre.org"
},
{
"url": "http://osvdb.org/31165",
"source": "cve@mitre.org"
},
{
"url": "http://projects.info-pull.com/moab/MOAB-04-01-2007.html",
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Vendor Advisory"
]
},
{
"url": "http://secunia.com/advisories/23615",
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
]
},
{
"url": "http://www.digitalmunition.com/DMA%5B2007-0104a%5D.txt",
"source": "cve@mitre.org"
},
{
"url": "http://www.securityfocus.com/archive/1/455968/100/0/threaded",
"source": "cve@mitre.org"
},
{
"url": "http://www.securityfocus.com/bid/21871",
"source": "cve@mitre.org"
},
{
"url": "http://www.vupen.com/english/advisories/2007/0057",
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
]
},
{
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31281",
"source": "cve@mitre.org"
},
{
"url": "https://www.exploit-db.com/exploits/3080",
"source": "cve@mitre.org"
}
]
}
Reference in New Issue View Git Blame Copy Permalink