CVE-2006-3500
Severity Score
7.2
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The dynamic linker (dyld) in Apple Mac OS X 10.4.7 allows local users to execute arbitrary code via an "improperly handled condition" that leads to use of "dangerous paths," probably related to an untrusted search path vulnerability.
El enlazador dinámico (dyld) en Apple Mac OS X 10.4.7 permite a usuarios locales ejecutar código de su elección a través de una "condición de manejo incorrecta" que conduce al uso de "parches peligrosos", posiblemente relacionados con una vulnerabilidad del camino de búsqueda no confiable en un fichero.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2006-07-10 CVE Reserved
- 2006-08-03 CVE Published
- 2024-06-23 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (7)
| URL | Tag | Source |
|---|---|---|
| http://secunia.com/advisories/21253 | Third Party Advisory | |
| http://www.osvdb.org/27738 | Vdb Entry | |
| http://www.securityfocus.com/bid/19289 | Vdb Entry | |
| http://www.us-cert.gov/cas/techalerts/TA06-214A.html | Third Party Advisory | |
| http://www.vupen.com/english/advisories/2006/3101 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/28141 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://lists.apple.com/archives/security-announce/2006//Aug/msg00000.html | 2017-07-20 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.4.7 Search vendor "Apple" for product "Mac Os X" and version "10.4.7" | - |
Affected
| ||||||
| Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.4.7 Search vendor "Apple" for product "Mac Os X Server" and version "10.4.7" | - |
Affected
| ||||||