var-200603-0282
Vulnerability from variot
Unspecified vulnerability in Safari, LaunchServices, and/or CoreTypes in Apple Mac OS X 10.4 up to 10.4.5 allows attackers to trick a user into opening an application that appears to be a safe file type. NOTE: due to the lack of specific information in the vendor advisory, it is not clear how CVE-2006-0397, CVE-2006-0398, and CVE-2006-0399 are different. Apple Safari WebKit component is vulnerable to buffer overflow. This may allow a remote attacker to execute arbitrary code or cause a denial-of-service condition. Commands would be executed in the context of the user opening the archive file. Attackers can reportedly use Safari and Apple Mail as exploitation vectors for this vulnerability. Mac OS X 10.4.5 is reported to be vulnerable. Earlier versions may also be affected. Apple Safari is a web browser bundled with the Apple operating system. There is an issue in Safari's handling of automatic opening of downloaded files. Safari's default configuration allows files to be automatically opened after downloading a safe file. Due to this default configuration and inconsistencies in Safari and OS X's security files, Safari may execute arbitrary shell commands if a specially crafted page is viewed.
TITLE: Mac OS X KHTMLParser Denial of Service Weakness
SECUNIA ADVISORY ID: SA18220
VERIFY ADVISORY: http://secunia.com/advisories/18220/
CRITICAL: Not critical
IMPACT: DoS
WHERE:
From remote
OPERATING SYSTEM: Apple Macintosh OS X http://secunia.com/product/96/
DESCRIPTION: Tom Ferris has discovered a weakness in Mac OS X, which can be exploited by malicious people to cause a DoS (Denial of Service).
The weakness is caused due to an error in the KHTMLParser when parsing certain malformed HTML documents. This can be exploited to crash an application that uses the parser via a specially crafted HTML file. In certain cases, this may cause the system to become unresponsive. Other applications that use the parser may also be affected.
SOLUTION: Do not open or follow links to HTML files from non-trusted sources.
PROVIDED AND/OR DISCOVERED BY: Tom Ferris
ORIGINAL ADVISORY: http://security-protocols.com/advisory/sp-x22-advisory.txt
About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.
Subscribe: http://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/
Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.
Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org
Show details on source website
{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-200603-0282",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": null,
"scope": null,
"trust": 1.6,
"vendor": "apple computer",
"version": null
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.6,
"vendor": "apple",
"version": "10.4.2"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.6,
"vendor": "apple",
"version": "10.4.5"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.6,
"vendor": "apple",
"version": "10.4"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.6,
"vendor": "apple",
"version": "10.4.3"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.6,
"vendor": "apple",
"version": "10.4.4"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.6,
"vendor": "apple",
"version": "10.4.5"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.6,
"vendor": "apple",
"version": "10.4.1"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.6,
"vendor": "apple",
"version": "10.4.4"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.6,
"vendor": "apple",
"version": "10.4"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.6,
"vendor": "apple",
"version": "10.4.3"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.4.2"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.4.1"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.4.5"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.3.9"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.4.5"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.3.9"
}
],
"sources": [
{
"db": "CERT/CC",
"id": "VU#351217"
},
{
"db": "CERT/CC",
"id": "VU#999708"
},
{
"db": "BID",
"id": "16736"
},
{
"db": "CNNVD",
"id": "CNNVD-200603-262"
},
{
"db": "NVD",
"id": "CVE-2006-0397"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:apple:mac_os_x_server:10.4.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:apple:mac_os_x_server:10.4.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.4.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:apple:mac_os_x_server:10.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.4.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.4.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:apple:mac_os_x_server:10.4.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:apple:mac_os_x_server:10.4.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:apple:mac_os_x_server:10.4.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.4.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.4.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2006-0397"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Michael Lehn",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-200603-262"
}
],
"trust": 0.6
},
"cve": "CVE-2006-0397",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"acInsufInfo": false,
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "NVD",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": true,
"severity": "HIGH",
"trust": 1.0,
"userInteractionRequired": false,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "VHN-16505",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "HIGH",
"trust": 0.1,
"vectorString": "AV:N/AC:L/AU:N/C:P/I:P/A:P",
"version": "2.0"
}
],
"cvssV3": [],
"severity": [
{
"author": "NVD",
"id": "CVE-2006-0397",
"trust": 1.0,
"value": "HIGH"
},
{
"author": "CARNEGIE MELLON",
"id": "VU#351217",
"trust": 0.8,
"value": "17.21"
},
{
"author": "CARNEGIE MELLON",
"id": "VU#999708",
"trust": 0.8,
"value": "35.44"
},
{
"author": "CNNVD",
"id": "CNNVD-200603-262",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "VULHUB",
"id": "VHN-16505",
"trust": 0.1,
"value": "HIGH"
}
]
}
],
"sources": [
{
"db": "CERT/CC",
"id": "VU#351217"
},
{
"db": "CERT/CC",
"id": "VU#999708"
},
{
"db": "VULHUB",
"id": "VHN-16505"
},
{
"db": "CNNVD",
"id": "CNNVD-200603-262"
},
{
"db": "NVD",
"id": "CVE-2006-0397"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Unspecified vulnerability in Safari, LaunchServices, and/or CoreTypes in Apple Mac OS X 10.4 up to 10.4.5 allows attackers to trick a user into opening an application that appears to be a safe file type. NOTE: due to the lack of specific information in the vendor advisory, it is not clear how CVE-2006-0397, CVE-2006-0398, and CVE-2006-0399 are different. Apple Safari WebKit component is vulnerable to buffer overflow. This may allow a remote attacker to execute arbitrary code or cause a denial-of-service condition. Commands would be executed in the context of the user opening the archive file. \nAttackers can reportedly use Safari and Apple Mail as exploitation vectors for this vulnerability. \nMac OS X 10.4.5 is reported to be vulnerable. Earlier versions may also be affected. Apple Safari is a web browser bundled with the Apple operating system. There is an issue in Safari\u0027s handling of automatic opening of downloaded files. Safari\u0027s default configuration allows files to be automatically opened after downloading a safe file. Due to this default configuration and inconsistencies in Safari and OS X\u0027s security files, Safari may execute arbitrary shell commands if a specially crafted page is viewed. \n\nTITLE:\nMac OS X KHTMLParser Denial of Service Weakness\n\nSECUNIA ADVISORY ID:\nSA18220\n\nVERIFY ADVISORY:\nhttp://secunia.com/advisories/18220/\n\nCRITICAL:\nNot critical\n\nIMPACT:\nDoS\n\nWHERE:\n\u003eFrom remote\n\nOPERATING SYSTEM:\nApple Macintosh OS X\nhttp://secunia.com/product/96/\n\nDESCRIPTION:\nTom Ferris has discovered a weakness in Mac OS X, which can be\nexploited by malicious people to cause a DoS (Denial of Service). \n\nThe weakness is caused due to an error in the KHTMLParser when\nparsing certain malformed HTML documents. This can be exploited to\ncrash an application that uses the parser via a specially crafted\nHTML file. In certain cases, this may cause the system to become\nunresponsive. Other applications that use the\nparser may also be affected. \n\nSOLUTION:\nDo not open or follow links to HTML files from non-trusted sources. \n\nPROVIDED AND/OR DISCOVERED BY:\nTom Ferris\n\nORIGINAL ADVISORY:\nhttp://security-protocols.com/advisory/sp-x22-advisory.txt\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n",
"sources": [
{
"db": "NVD",
"id": "CVE-2006-0397"
},
{
"db": "CERT/CC",
"id": "VU#351217"
},
{
"db": "CERT/CC",
"id": "VU#999708"
},
{
"db": "BID",
"id": "16736"
},
{
"db": "VULHUB",
"id": "VHN-16505"
},
{
"db": "PACKETSTORM",
"id": "42522"
}
],
"trust": 2.79
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2006-0397",
"trust": 2.8
},
{
"db": "SECUNIA",
"id": "19129",
"trust": 1.7
},
{
"db": "OSVDB",
"id": "23869",
"trust": 1.7
},
{
"db": "VUPEN",
"id": "ADV-2006-0949",
"trust": 1.7
},
{
"db": "SECTRACK",
"id": "1015760",
"trust": 1.7
},
{
"db": "BID",
"id": "16736",
"trust": 1.1
},
{
"db": "SECUNIA",
"id": "18220",
"trust": 0.9
},
{
"db": "SECUNIA",
"id": "19064",
"trust": 0.8
},
{
"db": "CERT/CC",
"id": "VU#351217",
"trust": 0.8
},
{
"db": "XF",
"id": "24808",
"trust": 0.8
},
{
"db": "SECTRACK",
"id": "1015652",
"trust": 0.8
},
{
"db": "SECUNIA",
"id": "18963",
"trust": 0.8
},
{
"db": "CERT/CC",
"id": "VU#999708",
"trust": 0.8
},
{
"db": "CNNVD",
"id": "CNNVD-200603-262",
"trust": 0.7
},
{
"db": "APPLE",
"id": "APPLE-SA-2006-03-13",
"trust": 0.6
},
{
"db": "XF",
"id": "25269",
"trust": 0.6
},
{
"db": "VULHUB",
"id": "VHN-16505",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "42522",
"trust": 0.1
}
],
"sources": [
{
"db": "CERT/CC",
"id": "VU#351217"
},
{
"db": "CERT/CC",
"id": "VU#999708"
},
{
"db": "VULHUB",
"id": "VHN-16505"
},
{
"db": "BID",
"id": "16736"
},
{
"db": "PACKETSTORM",
"id": "42522"
},
{
"db": "CNNVD",
"id": "CNNVD-200603-262"
},
{
"db": "NVD",
"id": "CVE-2006-0397"
}
]
},
"id": "VAR-200603-0282",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "VULHUB",
"id": "VHN-16505"
}
],
"trust": 0.01
},
"last_update_date": "2024-07-23T22:04:24.723000Z",
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-94",
"trust": 1.1
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-16505"
},
{
"db": "NVD",
"id": "CVE-2006-0397"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 2.8,
"url": "http://docs.info.apple.com/article.html?artnum=303453"
},
{
"trust": 1.7,
"url": "http://lists.apple.com/archives/security-announce/2006/mar/msg00001.html"
},
{
"trust": 1.7,
"url": "http://www.osvdb.org/23869"
},
{
"trust": 1.7,
"url": "http://securitytracker.com/id?1015760"
},
{
"trust": 1.7,
"url": "http://secunia.com/advisories/19129"
},
{
"trust": 1.6,
"url": "http://docs.info.apple.com/article.html?artnum=303382"
},
{
"trust": 1.1,
"url": "http://www.vupen.com/english/advisories/2006/0949"
},
{
"trust": 1.1,
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25269"
},
{
"trust": 0.9,
"url": "http://security-protocols.com/advisory/sp-x22-advisory.txt"
},
{
"trust": 0.9,
"url": "http://secunia.com/advisories/18220/"
},
{
"trust": 0.8,
"url": "http://secunia.com/advisories/19064/"
},
{
"trust": 0.8,
"url": "http://webkit.opendarwin.org/"
},
{
"trust": 0.8,
"url": "http://www.mathematik.uni-ulm.de/numerik/staff/lehn/macosx.html"
},
{
"trust": 0.8,
"url": "http://www.heise.de/english/newsticker/news/69862"
},
{
"trust": 0.8,
"url": "http://developer.apple.com/documentation/carbon/conceptual/launchservicesconcepts/lscconcepts/chapter_2_section_8.html"
},
{
"trust": 0.8,
"url": "http://developer.apple.com/technotes/tn/tn2017.html"
},
{
"trust": 0.8,
"url": "http://developer.apple.com/documentation/mac/moretoolbox/moretoolbox-11.html"
},
{
"trust": 0.8,
"url": "http://docs.info.apple.com/article.html?artnum=108009"
},
{
"trust": 0.8,
"url": "http://secunia.com/advisories/18963/"
},
{
"trust": 0.8,
"url": "http://www.securityfocus.com/bid/16736"
},
{
"trust": 0.8,
"url": "http://xforce.iss.net/xforce/xfdb/24808"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2006-0397"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2006-0398"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2006-0399"
},
{
"trust": 0.8,
"url": "http://securitytracker.com/alerts/2006/feb/1015652.html"
},
{
"trust": 0.6,
"url": "http://www.frsirt.com/english/advisories/2006/0949"
},
{
"trust": 0.6,
"url": "http://xforce.iss.net/xforce/xfdb/25269"
},
{
"trust": 0.3,
"url": "http://www.info.apple.com/usen/security/security_updates.html"
},
{
"trust": 0.3,
"url": "http://www.apple.com/macosx/"
},
{
"trust": 0.1,
"url": "http://secunia.com/secunia_security_advisories/"
},
{
"trust": 0.1,
"url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
},
{
"trust": 0.1,
"url": "http://secunia.com/product/96/"
},
{
"trust": 0.1,
"url": "http://secunia.com/about_secunia_advisories/"
}
],
"sources": [
{
"db": "CERT/CC",
"id": "VU#351217"
},
{
"db": "CERT/CC",
"id": "VU#999708"
},
{
"db": "VULHUB",
"id": "VHN-16505"
},
{
"db": "BID",
"id": "16736"
},
{
"db": "PACKETSTORM",
"id": "42522"
},
{
"db": "CNNVD",
"id": "CNNVD-200603-262"
},
{
"db": "NVD",
"id": "CVE-2006-0397"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "CERT/CC",
"id": "VU#351217"
},
{
"db": "CERT/CC",
"id": "VU#999708"
},
{
"db": "VULHUB",
"id": "VHN-16505"
},
{
"db": "BID",
"id": "16736"
},
{
"db": "PACKETSTORM",
"id": "42522"
},
{
"db": "CNNVD",
"id": "CNNVD-200603-262"
},
{
"db": "NVD",
"id": "CVE-2006-0397"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2006-03-03T00:00:00",
"db": "CERT/CC",
"id": "VU#351217"
},
{
"date": "2006-02-21T00:00:00",
"db": "CERT/CC",
"id": "VU#999708"
},
{
"date": "2006-03-14T00:00:00",
"db": "VULHUB",
"id": "VHN-16505"
},
{
"date": "2006-02-21T00:00:00",
"db": "BID",
"id": "16736"
},
{
"date": "2005-12-23T08:37:20",
"db": "PACKETSTORM",
"id": "42522"
},
{
"date": "2006-02-21T00:00:00",
"db": "CNNVD",
"id": "CNNVD-200603-262"
},
{
"date": "2006-03-14T11:02:00",
"db": "NVD",
"id": "CVE-2006-0397"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2006-03-06T00:00:00",
"db": "CERT/CC",
"id": "VU#351217"
},
{
"date": "2006-12-07T00:00:00",
"db": "CERT/CC",
"id": "VU#999708"
},
{
"date": "2017-07-20T00:00:00",
"db": "VULHUB",
"id": "VHN-16505"
},
{
"date": "2016-07-06T14:40:00",
"db": "BID",
"id": "16736"
},
{
"date": "2006-03-15T00:00:00",
"db": "CNNVD",
"id": "CNNVD-200603-262"
},
{
"date": "2017-07-20T01:29:43.753000",
"db": "NVD",
"id": "CVE-2006-0397"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-200603-262"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Apple Safari WebKit component vulnerable to buffer overflow",
"sources": [
{
"db": "CERT/CC",
"id": "VU#351217"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "code injection",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-200603-262"
}
],
"trust": 0.6
}
}
Loading...
Loading...
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.